There's more than one way to do things | |
PerlMonks |
comment on |
( [id://3333]=superdoc: print w/replies, xml ) | Need Help?? |
If it's not flawless, I'll point all blame at the original author - any praise will, naturally, stop with me :)
That said, I've added tests for all (relevant) exploits on the XSS (Cross Site Scripting) Cheat Sheet website. I don't know what tags you generate through HTML::BBCode, but you may need to override (by sub-classing) the default list if you need to add any. Also, I think that your HTML generator would be a good match with HTML::StripScripts, because StripScripts need to receive tokens, and your module is generating tokens... the interface should be pretty easy. If you need any help with it, drop me a /msg Clint In reply to Re^2: XSS-Bug in HTML::BBCode
by clinton
|
|