Published on 2005-09-04 07:05:54

HTML_Safe have been just released, a first beta 1.0.0RC1 as a PEAR Package. Its main goal is to strips down all potentially dangerous content within HTML. SafeHTML is using HTMLSax to parse HTML.

Danerous tags within HTML includes :

• opening tag without its closing tag 
• closing tag without its opening tag 
• any of these tags: “base”, “basefont”, “head”, “html”, “body”, “applet”, “object”, “iframe”, “frame”, “frameset”, “script”, “layer”, “ilayer”, “embed”, “bgsound”, “link”, “meta”, “style”, “title”, “blink”, “xml” etc.
• any of these attributes: on*, data*, dynsrc
• javascript:/vbscript:/about: etc. protocols
• expression/behavior etc. in styles
• any other active content

Read More

• PDO PECL releases
• PDO intro on SitePoint
• How to increase PEAR security
• PEAR 1.4.0 Final Released!

• Advertise on our mobile site!
• [Contact us]

Member of the PHP Magazine Network, Copyright (C) 2005-2009 phpmagazine.net All Rights Reserved