rofl90 Posted April 1, 2008 Share Posted April 1, 2008 I've been looking at cleaning HTML, and theres these huge classes and functions just to do a simple thing: Is it OK for me to just have one simple function that performs a few things like mysql_real_escape_string addslashes htmlentities etc, then just allow them to use bbcode. Link to comment https://forums.phpfreaks.com/topic/98907-cleaning-html/ Share on other sites More sharing options...
discomatt Posted April 1, 2008 Share Posted April 1, 2008 HTML cleansers are when you want user inputted HTML to come out as clean HTML with no form of XXS injection If you're removing all HTML tags, there's no reason to parse the HTML further. Link to comment https://forums.phpfreaks.com/topic/98907-cleaning-html/#findComment-506079 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.