On 2006-06-16, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> Is there a module (or, better yet, sample code) that scrubs
> user-entered text to remove cross-site scripting attacks, while also
> allowing a small subset of HTML through?
>
> Contemplated application: a message board that allows peopl
Have a look at
http://feedparser.org/docs/html-sanitization.html
.
Jim
--
http://mail.python.org/mailman/listinfo/python-list
Have a look at
http://feedparser.org/docs/html-sanitization.html
.
Jim
--
http://mail.python.org/mailman/listinfo/python-list
Is there a module (or, better yet, sample code) that scrubs
user-entered text to remove cross-site scripting attacks, while also
allowing a small subset of HTML through?
Contemplated application: a message board that allows people to use
, , and so on, but does not allow any javascript,
vbscript,
