Microweber\Utils\Format::clean_xss PHP Method

Format Class Documentation Datei anzeigen Open project: microweber/microweber

clean_xss() public method

public clean_xss ( $var, $do_not_strip_tags = false ) 
    public function clean_xss($var, $do_not_strip_tags = false)
    {
        static $sec;
        if ($sec == false) {
            $sec = new \Microweber\Utils\lib\XSSSecurity();
        }
        if (is_array($var)) {
            foreach ($var as $key => $val) {
                $output[$key] = $this->clean_xss($val, $do_not_strip_tags);
            }
        } else {
            $var = $sec->clean($var);
            $var = str_ireplace('<script>', '', $var);
            $var = str_ireplace('</script>', '', $var);
            $var = str_replace('<?', '&lt;?', $var);
            $var = str_replace('?>', '?&gt;', $var);
            $var = str_ireplace('<module', '&lt;module', $var);
            $var = str_ireplace('<Microweber', '&lt;Microweber', $var);
            $var = str_ireplace('javascript:', '', $var);
            $var = str_ireplace('vbscript:', '', $var);
            $var = str_ireplace('livescript:', '', $var);
            $var = str_ireplace('HTTP-EQUIV=', '', $var);
            $var = str_ireplace("52\\", '', $var);
            if ($do_not_strip_tags == false) {
                $var = strip_tags(trim($var));
            }
            $output = $var;
            return $output;
        }
        if (isset($output)) {
            return $output;
        }
    }
Format
add_slashes_recursive
ago
array_to_base64
array_to_ul
array_trim
array_values
auto_link
auto_link_text_callback
autolink
base64_to_array
clean_html
clean_scripts
clean_xss
date
decode_ids
decrypt
encode_ids
encrypt
human_filesize
is_base64
is_fqdn
limit
lipsum
lnotif
no_dashes
notif
percent
prep_url
random_color
render_item_custom_fields_data
replace_once
string_between
strip_slashes_recursive
strip_unsafe
titlelize
unvar_dump