Jump to content

Security of HTML in PHP.


Chevy

Recommended Posts

really you don't want to move outside of BB tags.  The amount of hassle it is to manage all tags is a lot.

First you have to worry about every tag being closed properly so that your structure isn't altered.

Secondly you have to make sure nothing dangerous is put in

Thirdly  you want to have legal w3 compliance so you have to verify that

Stick to BBcode and add your own custom tags.

still not what I am asking.

 

Okay I am sure you all know about XSS attacks.

 

If I used strip_tags, I would be making a list that is VERY long, because I only want to ban a few HTML tags, like my imaginary function.

 

  $text = allow_tags($varible, '<object><param><embed><script>');

 

it does pretty much to reverse of strip_tags.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.