PHP通用的XSS攻击过滤函数,Discuz系统中 防止XSS漏洞攻击,过滤HTML危险标签属性的PHP函数

流传的移除XSS攻击的php函数

The goal of this function is to be a generic function that can be used to parse almost any input and render it XSS safe. For more information on actual XSS attacks, check out http://ha.ckers.org/xss.html. Another excellent site is the XSS Database which details each attack and how it works.

 

Discuz系统中 防止XSS漏洞攻击,过滤HTML危险标签属性的PHP函数

 

打赏

2 评论

发表评论

电子邮件地址不会被公开。 必填项已用*标注