Home > Article > Backend Development > php过滤不安全字符函数_PHP教程

php过滤不安全字符函数_PHP教程

WBOYOriginal: 2016-07-13 17:09:19691browse

php过滤不安全字符函数

function uh($str)
{
    $farr = array(
        "/\s+/",//过滤多余的空白
        "/]*?)>/isU",//过滤         "/(]*)on[a-zA-Z]+\s*=([^>]*>)/isU",//过滤JavaScript的on事件
    );
   $tarr = array(
        " ",
        "＜\\1\\2\\3＞", //如果要直接清除不安全的标签，这里可以留空
        "\\1\\2",
   );

$str = preg_replace($farr,$tarr,$str);
return $str;

Statement：

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Previous article：开源PHP框架: CodeIgniter 1.6.0发布_PHP教程Next article：php get post传递数据安全问题_PHP教程

See more

php过滤不安全字符函数_PHP教程

Related articles