Linux Software / Programming / Libraries

HTML::Detoxifier 0.02

Date Added: June 25, 2010 | Visits: 827

Report Broken Link
Printer Friendly Version

Product Homepage
Download (88 downloads)

HTML::Detoxifier is a practical module to strip harmful HTML. SYNOPSIS use HTML::Detoxifier qw ; my $clean_html = detoxify $html; my $cleaner_html = detoxify($html, disallow => [qw(dynamic images document)]); my $stripped_html = detoxify($html, disallow => [qw(everything)]); HTML::Detoxifier is a practical module to remove harmful tags from HTML input. Its intended to be used for web sites that accept user input in the form of HTML and then present that information in some form. Accepting all HTML from untrusted users is generally a very bad idea; typically, all HTML should be run through some kind of filter before being presented to end users. Cross-site scripting (XSS) vulnerabilities can run rampant without a filter. The most common and obvious HTML vulnerability lies in stealing users login cookies through JavaScript. Unlike other modules, HTML::Detoxifier is intended to be a practical solution that abstracts away all the specifics of whitelisting certain tags easily and securely. Tags are divided into functional groups, each of which can be disallowed or allowed as you wish. Additionally, HTML::Detoxifier knows how to clean inline CSS; with HTML::Detoxifier, you can securely allow users to use style sheets without allowing cross-site scripting vulnerabilities. (Yes, it is possible to execute JavaScript from CSS!) In addition to this main purpose, HTML::Detoxifier cleans up some common mistakes with HTML: all tags are closed, empty tags are converted to valid XML (that is, with a trailing /), and images without ALT text as required in HTML 4.0 are given a plain ALT tag. The module does its best to emit valid XHTML 1.0; it even adds XML declarations and DOCTYPE elements where needed..

Requirements: No special requirements

Platforms: Linux

Keyword: Harmful, Html, Htmldetoxifier, Libraries, Module, Practical, Programming, Strip, Tags, Users

Users rating: 0/10

License: Freeware

Size: 5.12 KB

USER REVIEWS

More Reviews or Write Review

HTML::DETOXIFIER RELATED

Libraries - PDL::Pod::Html 1.99989 PDL::Pod::Html is Perl module to convert pod files to HTML. SYNOPSIS use PDL::Pod::Html; pod2html([options]); Converts files from pod format (see perlpod) to HTML format. It can automatically generate indexes and cross-references, and it...	655.36 KB
Libraries - BBCode::Parser 0.34 BBCode::Parser is a Perl module that parses BBCode tags. BBCode is a simplified markup language used in several online forums and bulletin boards. It originated with phpBB, and remains most popular among applications written in PHP. Generally,...	51.2 KB
Libraries - HTML::FormHighlight 0.03 HTML::FormHighlight Perl module can help you to highlights fields in an HTML form. SYNOPSIS use HTML::FormHighlight; my $h = new HTML::FormHighlight; print $h->highlight( scalarref => $form, fields => [ A, B, C ], ); print...	5.12 KB
Libraries - HTML::CalendarMonthSimple 1.25 HTML::CalendarMonthSimple is a Perl Module for Generating HTML Calendars. SYNOPSIS use HTML::CalendarMonthSimple; $cal = new HTML::CalendarMonthSimple(year=>2001,month=>2); $cal->width(50%); $cal->border(10); $cal->header(Text at the top...	15.36 KB
Libraries - Pod::POM::View::HTML::Filter 0.09 Pod::POM::View::HTML::Filter Perl module can use filters on sections of your pod documents. SYNOPSIS In your POD: Some coloured Perl code: =begin filter perl # now in full colour! $A++; =end filter =for filter=perl $A++; # this works...	24.58 KB
Libraries - HTML::Template::Expr 0.07 HTML::Template::Expr module provides an extension to HTML::Template which allows expressions in the template syntax. HTML::Template::Expr module is purely an addition--all the normal HTML::Template options, syntax, and behaviors will still work....	18.43 KB
Programming - Extension for HTML::Template::Pro module 0.05 This module extends HTML::Template::Pro to easily support methods and tags not implemented in parent module. All plugins live in the H::T::P::Extension namespace and you can built your own extension to support you prefered tags and functionality.	13.43 KB
Libraries - perlfaq3 5.8.8 perlfaq3 Perl module contains programming tools. How do I do (anything)? Have you looked at CPAN (see perlfaq2)? The chances are that someone has already written a module that can solve your problem. Have you read the appropriate manpages?...	12.2 MB
Modules - Camp26 Sticky HTML 1.0.1a Camp26 Sticky HTML is special module that pops up at the center of the page to display anything of your choice, including including various types of advertising and affiliate (like simple banner code, simple text html, amazon affiliate, google...	10 KB
Utilities - Jericho HTML Parser 2.4 Jerich HTML Parser is a simple but powerful java library allowing analysis and manipulation of parts of an HTML document, including some common server-side tags, while reproducing verbatim any unrecognised or invalid HTML. It also provides...	870.4 KB

NEW DOWNLOADS IN PROGRAMMING, LIBRARIES

Programming - Cedalion for Linux 0.2.6 Cedalion is a programming language that allows its users to add new abstractions and define (and use) internal DSLs. Its innovation is in the fact that it uses projectional editing to allow the new abstractions to have no syntactic limitations.	471.04 KB
Programming - Math::GMPf 0.29 Math::GMPf - perl interface to the GMP library's floating point (mpf) functions.	30.72 KB
Programming - Net::Wire10 1.08 Net::Wire10 is a Pure Perl connector that talks to Sphinx, MySQL and Drizzle servers. Net::Wire10 implements the low-level network protocol, alias the MySQL wire protocol version 10, necessary for talking to one of the aforementioned...	30.72 KB
Programming - logilab-common 0.56.2 a bunch of modules providing low level functionnalities shared among some python projects devel Please note that some of the modules have some extra dependencies. For instance, logilab.common.db will require a db-api 2.0 compliant...	174.08 KB
Programming - OpenSSL for linux 1.0.0a The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a...	3.83 MB
Libraries - wolfSSL 4.0.0 The wolfSSL embedded SSL/TLS library is a lightweight SSL library written in ANSI standard C and targeted for embedded and RTOS environments - primarily because of its small size, speed, and feature set. It is commonly used in standard operating...	3.88 MB
Libraries - EuGTK 4.8.9 Makes it easy to develop good- looking, fast, cross-platform programs that run on Linux, OS X, and Windows. Euphoria is a very fast interpreted/compiled language with straight-forward syntax. EuGTK allows programming in a clean, object-oriented...	10.68 MB
Libraries - Linux User Group Library Manager 1.0 The LUG Library Manager is a project to help Linux User Groups start their own library. A LUG library is helpful to the community at large because it increases access to information, and gives everyone the opportunity to become more knowledgeable.	5.35 KB
Libraries - Module::MakefilePL::Parse 0.12 Module::MakefilePL::Parse is a Perl module to parse required modules from Makefile.PL. SYNOPSIS use Module::MakefilePL::Parse; open $fh, Makefile.PL; $parser = Module::MakefilePL::Parse->new( join("", ) ); $info = $parser->required;...	8.19 KB
Libraries - sqlpp 0.06 sqlpp Perl package is a SQL preprocessor. sqlpp is a conventional cpp-alike preprocessor taught to understand SQL ( PgSQL, in particular) syntax specificities. In addition to the standard #define/#ifdef/#else/#endif cohort, provides also...	10.24 KB

Windows Software	BeOS Software
Macintosh Software	Linux Software
PDA Software	OS/2 Software
Mobile Software	Scripts