RSS Feed/News Safely handling WYSIWYG content

Status
Not open for further replies.
ENXF NET

ENXF NET

Administrator
Staff member
Administrator
Moderator
+Lifetime VIP+
S.V.I.P.S Member
S.V.I.P Member
V.I.P Member
Collaborate
Registered
Joined
Nov 13, 2018
Messages
27,114
Points
823

Reputation:

What is the best practice for saving and retrieving content from the editor (wyswiyg form control) to prevent XSS attacks?

Is the recommendation to santize upon save?
XF::app()->stringFormatter()->sanitizeHtml($content);

Continue reading...
 
Status
Not open for further replies.
Top