removeEvils.php at c7540ac7b9af8bfd542d1652fa4a8c91b85112cf from singpolyma's tagging

singpolyma / tagging

Description:	Code from tagging.ning.com edit
Homepage:	http://tagging.ning.com edit
Public Clone URL:	git://github.com/singpolyma/tagging.git Give this clone URL to anyone. `git clone git://github.com/singpolyma/tagging.git`
Your Clone URL:	git@github.com:singpolyma/tagging.git Use this clone URL yourself. `git clone git@github.com:singpolyma/tagging.git`

Import from Ning

singpolyma (author)

Wed Apr 22 12:39:56 -0700 2009

commit c7540ac7b9af8bfd542d1652fa4a8c91b85112cf
tree 90b1a30090f2654e8e5877ab6a470ef0a40bcbe0

tagging / removeEvils.php

100755 16 lines (14 sloc) 0.766 kb

raw blame history

<?php
 
    function removeEvilTags($source) {
        // Code by tREXX [www.trexx.ch], "strip_tags", http://ca3.php.net/manual/en/function.strip-tags.php
        // [Jon Aquino 2005-10-28]
        $allowedTags = '<a><br><b><h1><h2><h3><h4><i><img><li><ol><p><strong><table><tr><td><th><u><ul>';
        $source = strip_tags($source, $allowedTags);
        return preg_replace('/<(.*?)>/ie', "'<'.removeEvilAttributes('\\1').'>'", $source);
    }
    function removeEvilAttributes($tagSource) {
        $stripAttrib = 'javascript:|onclick|ondblclick|onmousedown|onmouseup|onmouseover|'.
              'onmousemove|onmouseout|onkeypress|onkeydown|onkeyup';
        return stripslashes(preg_replace("/$stripAttrib/i", 'forbidden', $tagSource));
    }
 
?>