kses is an HTML/XHTML security filter that removes all unwanted HTML elements and attributes, no matter how malformed the HTML input you give it. It also does several checks on attribute values. It can be used to avoid cross-site scripting (XSS), buffer overflows, and denial of service attacks. It is used by popular programs such as WordPress and Geeklog.
|Tags||Software Development Libraries Security Internet Web Dynamic Content|
|Operating Systems||OS Independent|
Release Notes: This release added a second object-oriented kses version for PHP 5, uses isset() to avoid PHP notice warnings, changed chr(173) handling to help Asian users, and improved the handling of closing HTML elements.
Release Notes: This release adds a new object-oriented version of kses, three new attribute value checks (minlen, minval, and valueless), a work-around for an Opera "feature" that treats chr(173) as whitespace, and some other minor changes.
No changes have been submitted for this release.