Microweber\Utils\lib\XSSSecurity::removeEvilAttributes PHP Method

    protected function removeEvilAttributes($str)
    {
        do {
            $count = $tempCount = 0;
            // replace occurrences of illegal attribute strings with quotes (042 and 047 are octal quotes)
            $str = preg_replace('/(<[^>]+)(?<!\\w)(' . implode('|', $this->evil) . ')\\s*=\\s*(\\042|\\047)([^\\2]*?)(\\2)/is', '$1[removed]', $str, -1, $tempCount);
            $count += $tempCount;
            // find occurrences of illegal attribute strings without quotes
            $str = preg_replace('/(<[^>]+)(?<!\\w)(' . implode('|', $this->evil) . ')\\s*=\\s*([^\\s>]*)/is', '$1[removed]', $str, -1, $tempCount);
            $count += $tempCount;
        } while ($count);
        return $str;
    }