Home > Article > Backend Development > php过滤危险html代码_php基础

php过滤危险html代码_php基础

WBOYOriginal: 2016-05-17 09:35:47906browse

以下是程序代码：

 
function uhtml($str) 
{ 
$farr = array( 
"/\s+/", //过滤多余空白 
//过滤 <script>等可能引入恶意内容或恶意改变显示布局的代码,如果不需要插入flash等,还可以加入<object>的过滤 <BR>"/<(\/?)(script|i?frame|style|html|body|title|link|meta|\?|\%)([^>]*?)>/isU", <BR>"/(<[^>]*)on[a-zA-Z]+\s*=([^>]*>)/isU",//过滤javascript的on事件 <BR>); <BR>$tarr = array( <BR>" ", <BR>"＜1\2\3＞",//如果要直接清除不安全的标签，这里可以留空 <BR>"\1\2", <BR>); <BR>$str = preg_replace( $farr,$tarr,$str); <BR>return $str; <BR>} <BR></script>

Statement：

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Previous article：继续收藏一些PHP常用函数_php技巧Next article：php IIS日志分析搜索引擎爬虫记录程序_php实例

See more

php过滤危险html代码_php基础

Related articles