Jump to content

HTML sanitization

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by 217.118.209.33 (talk) at 08:56, 16 May 2011 (Added text). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

This article does not cite any sources. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed.
Find sources: "HTML sanitization" – news · newspapers · books · scholar · JSTOR (December 2009) (Learn how and when to remove this message)

HTML sanitization is the process of examining an HTML document and producing a new HTML document that preserves only whatever tags are designated "safe". HTML sanitization can be used to protect against cross-site scripting and SQL injection attacks by sanitizing any HTML code submitted by a user.

Tags often allowed are <b>, <i>, <u>, <em>, and <strong>.

This Web-software-related article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=HTML_sanitization&oldid=429363038"

Hidden categories: