Freeware reviews, comparisons, rankings
Limited-edition 2006 Chile embossed planner / organizer
HomeLogin/Register Home   Downloads   Members Login   Submit News   Forums   FAQ   Topics   Contact   

Welcome!
 Home
 News
 Software
 Reviews
 Ratings
 Interact
 Forums
 Downloads & Links
 Web Links
 Members
 Your Account
 Admin
Site Info
There is a problem right now with this block.
PHP HTML Filter Tools

General Several tools (mostly classes) give PHP applications the ability to strip bad HTML, enforce XHTML compliance, and more. These tools include Cyberai InputFilter, Deric Rethans filter, HTML Filter for PHP, HTML_Safe, kses, and Safe HTML checker. This comparison shows some of the important differences.

HTML Filters
Configuration Form Fields Additional
Class / Tool License Tags Attributes Whitelist Blacklist Dynamic All Single XSS SQL Injection Logic Max Len / Value Compliance
Cyberai InputFilter GPL Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Tags, Attributes
Deric Rethans filter PHP (Yes) (Yes) (Yes)
Yes No Yes No No Yes No No
HTML Filter for PHP LGPL Yes Yes Yes No No No Yes No No No No Validation?
HTML_Safe BSD Yes Yes Yes Yes No No Yes No No No No Tags
kses GPL Yes Yes Yes No Yes No Yes No No No Yes Attributes
Safe HTML checker ? Yes Yes Yes No No No Yes No No No No Tags

Configuration
Tags and Attributes includes the ability to specify which tags and attributes are allowed (whitelist) or disallowed (blacklist).
Dynamic represents the ability to dynamically configure which tags / attributes are allowed

Form fields – can the tool process all form fields and / or a single field.  Though all forms fields is convenient, it may be necessary not to process specific field (e.g. Fields that contain html special characters text)

Additional
XSS – includes features for blocking cross site scripting attacks
SQL Injection – includes features for blocking SQL injection attacks
Logic – includes features for validating fields (e.g. email address, URL, etc.)
Max Len / Value – supports checking attribute values for minimum/maximum length and minimum/maximum value, to protect against Buffer Overflows and Denial of Service attacks against WWW clients and various servers
Compliance – enforces W3C / XHTML compliance with tags (requires open and close), attributes (requires double quotes)

Posted on Saturday, October 15, 2005 @ 02:10:47 EDT by kguske
Sorry, Comments are not available for this article.
 
Related Links
· More about General
· News by kguske
Most read story about General:
PHP-Nuke Security Tools
Article Rating
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad
Options

 Printer Friendly Printer Friendly


Legal
Optimized by nukeSEO
PHP-Nuke Copyright © 2004 by Francisco Burzi. This is free software, and you may redistribute it under the GPL. PHP-Nuke comes with absolutely no warranty, for details, see the license.
Page Generation: 0.55 Seconds

Theme by Dezina, enhanced and forum graphics by kguske