On Sun, Mar 14, 2010 at 12:24 PM, Rene Veerman <rene7705@xxxxxxxxx> wrote: > > I'd love to have a copy of whatever function you use to filter out bad > HTML/js/flash for use cases where users are allowed to enter html. > I'm aware of strip_tags() "allowed tags" param, but haven't got a good list > for it. > oh, and even <img> tags can be used for cookie-stuffing on many browsers.. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
