Re: My simple implementation of PHP strip_tags()

aberba via Digitalmars-d Wed, 28 Jun 2017 13:07:28 -0700

On Wednesday, 28 June 2017 at 19:58:31 UTC, Vladimir Panteleevwrote:

On Wednesday, 28 June 2017 at 19:50:44 UTC, aberba wrote:
Please read this ASAP:https://en.wikipedia.org/wiki/Cross-site_scripting
Ha ha. I will strip out <script> tags in the regex. Its betterto get rig of tags where not needed for clients other than abrowser. Please criticize the stripTags() implementation
I see you've ignored my advice.

Please, at least read this section:

https://en.wikipedia.org/wiki/Cross-site_scripting#Safely_validating_untrusted_HTML_input


My bad. I will read it.

Re: My simple implementation of PHP strip_tags()

Reply via email to