StripyTiger
Reputation: 1047
php htmlawed removing href link
I am capturing some content using tinyMCE, and then posting the content back to php script to store in database.
I am using htmlawed to remove anything nasty.
The content of the $_POST variable is
<p>This is a link <a href=\"https://www.bbc.co.uk\">https://www.bbc.co.uk</a></p>
I am then using this code on the server
$Details = $_POST["Details"];
$config = array('elements'=>'* -script -object'); //dont allow any scripts
$SanitizedDetails = htmLawed($Details, $config);
SanitizedDetails then contains this
<p>This is a link <a href="\">https://www.bbc.co.uk</a></p>
It has removed the contents of href (just left a backslash)
Please could somebody help with config for htmlawed
Upvotes: 1
Views: 95
Answers (1)
Ali Ali
Reputation: 1874
You need to delete the first backslash \ from href=\ and the last one from uk\ and you're ready to go.
Upvotes: 1
Related Questions
- HTML Purifier: How to prevent from removing href attribute of anchor tags
- PHP Regex completely remove HTML Anchor link from string in PHP
- Link inside text in HTML purify
- Modify all links in HTML Purifier
- How to make a string safe for an href attribute using PHP?
- How to properly sanitize URL as a link in PHP?
- Remove links where href is disallowed
- HTML Purifier - allowing links?
- Need help to remove html tags from a link
- How to strip html tags and leave link from a variable in php