Home >php教程 >php手册 >php过滤不安全字符函数

php过滤不安全字符函数

WBOY
WBOYOriginal
2016-06-13 10:11:18916browse

php过滤不安全字符函数

function uh($str)
{
    $farr = array(
        "/\s+/",//过滤多余的空白
        "/]*?)>/isU",//过滤 <script></script>         "/(]*)on[a-zA-Z]+\s*=([^>]*>)/isU",//过滤JavaScript的on事件
    );
   $tarr = array(
        " ",
        "<\\1\\2\\3>", //如果要直接清除不安全的标签,这里可以留空
        "\\1\\2",
   );

  $str = preg_replace($farr,$tarr,$str);
  return $str;

Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn