Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming global xss filtering and video embeds
global xss filtering and video embeds
  • El Forum
    Guest
  •  
#1
07-20-2009, 05:28 AM

[eluser]treadsoftley[/eluser]
I have global xss filtering enabled and this is something I would like to maintain, however,
video embeds are then rendered useless as the ascii equivalents are displayed eg % 2 C (spaced here) appears as a comma.

Of course, 'html_entity_decode()' does do this but then loads of spurious question marks appear in the text where it cannot decode such things as an ampersand between two para tags and anyway I would like to be more specific as to what I want to allow and where.

Does anyone know of a regex function that can restore the embed when the page is displayed?

Tia.


Messages In This Thread
global xss filtering and video embeds - by El Forum - 07-20-2009, 05:28 AM
global xss filtering and video embeds - by El Forum - 07-20-2009, 05:48 AM
global xss filtering and video embeds - by El Forum - 07-20-2009, 05:59 AM
global xss filtering and video embeds - by El Forum - 07-20-2009, 06:01 AM
global xss filtering and video embeds - by El Forum - 07-20-2009, 06:13 AM
global xss filtering and video embeds - by El Forum - 07-20-2009, 08:27 AM
global xss filtering and video embeds - by El Forum - 07-20-2009, 09:55 AM
global xss filtering and video embeds - by El Forum - 07-21-2009, 02:49 AM



Theme © iAndrew 2016 - Forum software by © MyBB