[Catalyst] Input/Parameter Checks
Christopher H. Laco
claco at chrislaco.com
Fri Dec 14 13:57:08 GMT 2007
Kieren Diment wrote:
> =
> On 14 Dec 2007, at 10:14, Mesdaq, Ali wrote:
> =
>> but there is
>> also user generated data that can be displayed on a site and you would
>> need to escape any javascript code or some html and css that users can
>> input. That maybe is even a bigger concern for me since thats what I see
>> on a daily basis in my line of work.
>>
> =
> HTML::Sanitize seemed to work well for me when I had cause to use it at
> one point.
> =
Actually, HTML::Sanitizer
There's also HTML::Scrubber
-=3DChris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 187 bytes
Desc: OpenPGP digital signature
Url : http://lists.scsys.co.uk/pipermail/catalyst/attachments/20071214/e2ab=
5e0c/signature.pgp
More information about the Catalyst
mailing list