|
|
 Linda Symonds - 2008-03-12 21:24:43 I have downloaded this class to try to stopper a security issue in PHPNuke and TinyMCE, however, I am having some trouble understanding how to install this program class.
The README.TXT is not extremely instructive, leaving much information out or making vague impressions of how it works, which is fine if you have a strong working knowledge of PHP, but my programming experience is not PHP based, so I am at a bit of a loss about where the files go, and how to set up the TAGS or ATTRibute arrays.
If someone could provide me with a more in-depth step-by-step installation procedure, it would be greatly appreciated.
Kenn
Kevin802090 - 2008-04-26 02:50:48 - In reply to message 1 from Linda SymondsYep, I'm a little lost too. Anyone?
anand jodawat - 2009-04-17 12:30:13 - In reply to message 1 from Linda SymondsI also having this problem..anyone can help me pls
matteo caberlotto - 2009-09-08 10:44:06 - In reply to message 1 from Linda Symondsno offence but... this class ain't definetely what i would suggest to use..
the principle is quite simple, declare something like
function filterInput($string)
{
$allowedTags = array(...);
$allowedAttr = array(...);
require_once("inputFilter.php");
$f = new inputFilter(allowedTags,allowedAttr,0,0,1);
return $f->process($string);
}
by the way, this class has several bugs and even if widely commented the code is kind of unreadable... even if the operation are simple string splitting etc..
this class doesnt handle long urls, i had to modify it (with pain..), i tried to contact author and mantainer to share the solution but none is available.
this class doesnt recognize '<br />' tags and goes into infinite loop.
again, i cannot share how to solve it.
it does more loops than required and reiterate same operations appereantly without any use.. the approach, in my opinion, isn't good as well.
i had to use it because it was included in an application we are customizing for a client.
|
