Kieren Diment wrote: > > On 14 Dec 2007, at 10:14, Mesdaq, Ali wrote: > >> but there is >> also user generated data that can be displayed on a site and you would >> need to escape any javascript code or some html and css that users can >> input. That maybe is even a bigger concern for me since thats what I see >> on a daily basis in my line of work. >> > > HTML::Sanitize seemed to work well for me when I had cause to use it at > one point. >
Actually, HTML::Sanitizer There's also HTML::Scrubber -=Chris
signature.asc
Description: OpenPGP digital signature
_______________________________________________ List: Catalyst@lists.scsys.co.uk Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/[EMAIL PROTECTED]/ Dev site: http://dev.catalyst.perl.org/