[eluser]timtocci[/eluser]
I've used HTMLPurifier with other (non codeigniter) projects and had great results. Thing is that HTMLPurifier has a big overhead. Since CodeIgniter has a filtering built in I've never thought about using anything else. Recently, I've noticed a few wiki entries about using the HTMLPurifier system with CodeIgniter. That's why I ask the question: Does anyone know of an instance where the default XSS filter included with CodeIgniter has failed? And if so, where and under what conditions?