HTML::StripScripts HTML::StripScripts can strip scripting constructs out of HTML.
Download

HTML::StripScripts Ranking & Summary

HTML::StripScripts Tags

HTML strip Perl module strip scripting constructs HTML scripting constructs

HTML::StripScripts Description

HTML::StripScripts can strip scripting constructs out of HTML. HTML::StripScripts can strip scripting constructs out of HTML.SYNOPSISM use HTML::StripScripts; my $hss = HTML::StripScripts->new({ Context => 'Inline' }); $hss->input_start_document; $hss->input_start('< i >'); $hss->input_text('hello, world!'); $hss->input_end('< /i >'); $hss->input_end_document; print $hss->filtered_document;This module strips scripting constructs out of HTML, leaving as much non-scripting markup in place as possible. This allows web applications to display HTML originating from an untrusted source without introducing XSS (cross site scripting) vulnerabilities.You will probably use HTML::StripScripts::Parser rather than using this module directly.The process is based on whitelists of tags, attributes and attribute values. This approach is the most secure against disguised scripting constructs hidden in malicious HTML documents.As well as removing scripting constructs, this module ensures that there is a matching end for each start tag, and that the tags are properly nested.Previously, in order to customise the output, you needed to subclass HTML::StripScripts and override methods. Now, most customisation can be done through the Rules option provided to new().The HTML document must be parsed into start tags, end tags and text before it can be filtered by this module. Use either HTML::StripScripts::Parser or HTML::StripScripts::Regex instead if you want to input an unparsed HTML document. Requirements: · Perl

HTML::StripScripts Related Software