A simple detection of XSS attack in url. like '<' '>' and quotes...
composer require coercive/xss
use Coercive\Security\Xss;
# Test URL
$url = "https://mywebsite.com/?var='%22><script>alert();</script>";
# Load with construct param
$xss = new XssUrl($url);
# Or use setUrl on an alredy loaded instance
$xss = new XssUrl;
$xss->setUrl($url);
# Detect
if($xss->isXss()) { die; }
# Test encoded url with script => alert('XSS')
$url = "javascript:alert('XSS')";
# Load with construct param
$xss = new XssUrl($url);
# Show example
echo '<a href="'.$url.'">BEFORE<a>';
echo '<br />';
echo '<a href="'.$xss->getFiltered().'">AFTER<a>';