PHP的HTML内容过滤,htmLawed 1.1.12 发布
jopen 12年前
<p>htmLawed 1.1.12 发布,该版本修复了 face 属性中无引号值的处理问题。</p> <p><a href="/misc/goto?guid=4958347155001475809" target="_blank">htmLawed</a> 是一个用来对用户输入的文本内容进行过滤,使之更加安全而且符合标准的PHP脚本。过滤的内容可人工定制,可防止跨站脚本工具(XSS)。htmLawed 可限制某些标签、属性以及URL协议。</p> <ul> <li>make HTML markup in text secure and standard-compliant</li> <li>process text for use in HTML, XHTML or XML documents</li> <li>restrict HTML elements, attributes or URL protocols using black- or white-lists</li> <li>balance tags, check element nesting, transform deprecated attributes and tags, make relative URLs absolute, etc.</li> <li><strong>fast, highly customizable, well-documented</strong></li> <li>single, 48 kb file</li> <li>simple HTML Tidy alternative</li> <li>free and licensed under LGPL v3 and GPL v2+</li> <li>use to filter, secure & sanitize HTML in blog comments or forum posts, generate XML-compatible feed items from web-page excerpts, convert HTML to XHTML, pretty-print HTML, scrape web-pages, reduce spam, remove XSS code, etc.</li> </ul> <p></p>