Lucien
Reputation: 886
Sanitise/strip Javascript from HTML
I have a string that contains HTML (from Markdown), other people can submit these and these strings are rendered on a webpage as actual HTML.
I'd like to safely strip every bit of Javascript from this HTML, whether it's in script tags or attributes.
What's the best/safest way of doing this?
Upvotes: 0
Views: 424
Answers (1)
Related Questions
- Javascript XSS Prevention
- Javascript Form Sanitization
- Sanitizing html string with javascript using browser to interpret html
- Sanitize innerHTML in javascript
- node.js \ sanitize html and also remove tags
- Sanitize all scripts from html string
- Javascript - Sanitize Malicious code from file (string)
- Filtering JavaScript out of HTML
- JavaScript-based X/HTML & CSS sanitization
- Is it possible to sanitize Javascript code?