Mmm let me thinking about...
I'd avoid ckeditor if sharing with untrusted users, it's not intended
for that use http://www.google.es/search?hl=es&source=hp&q=ckeditor+xss
If you feel unsecure, don't worry, I know the most secure way of
preventing XSS: google-caja http://code.google.com/p/google-
Thanks for responding!
The XML() helper is described in the online web2py book in section
5.2.
Basically, it prevents characters that are special to HTML from being
escaped in the output of other web2py helpers. The sanitize argument
tells XML() to escape all but a permitted set of tags and all
I don't know how XML function works, let me see your upload form code
and any html output of myXML
On 1 jul, 18:32, MikeEllis wrote:
> I'm developing an app that needs to allow users to create and view
> content that includes links, images, and embedded video, e.g. from
> YouTube. The following
3 matches
Mail list logo
