| How to remove html String in XSS filtering? |
|
Hello,
That is not the intent of the xss_clean() method. It is more geared for Java Script. As the Codeigniter Security Class mentions, use the html_escape() function for escaping HTML. The PHP function strip_tags() will remove HTML tags, not convert them. Alternatives for converting HTML entities to special characters are the PHP functions htmlspecialchars() and htmlentities(). |
| Messages In This Thread |
|
How to remove html String in XSS filtering? - by Geetha - 05-13-2019, 05:35 AM
RE: How to remove html String in XSS filtering? - by Mr Lister - 05-13-2019, 03:29 PM
RE: How to remove html String in XSS filtering? - by Geetha - 05-13-2019, 09:33 PM
|
