Package: wnpp Severity: wishlist Owner: Tim Retout <[EMAIL PROTECTED]>
* Package name : libhtml-stripscripts-perl Version : 1.04 Upstream Author : Clinton Gormley <[EMAIL PROTECTED]> * URL : http://search.cpan.org/dist/HTML-StripScripts/ * License : Artistic | GPL-1+ Programming Lang: Perl Description : Strip scripting constructs out of HTML HTML::StripScripts strips scripting constructs out of HTML, leaving as much non-scripting markup in place as possible. This allows web applications to display HTML originating from an untrusted source without introducing XSS (cross site scripting) vulnerabilities. You will probably use HTML::StripScripts::Parser rather than using this module directly - see the libhtml-stripscripts-parser-perl package. The process is based on whitelists of tags, attributes and attribute values. This approach is the most secure against disguised scripting constructs hidden in malicious HTML documents. As well as removing scripting constructs, this module ensures that there is a matching end for each start tag, and that the tags are properly nested. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]