#1255 new
dleffler

Feature request: more intelligent security filtering

Reported by dleffler | December 29th, 2014 @ 03:42 PM

We should make our 'scrubbing' more intelligent by only scrubbing 'untrusted' input. This would apply to non-admin users (could make this optional?) and then for both input/output only coming from the forms module, comments, the url. Perhaps using HTMLPurifier library http://htmlpurifier.org/?

Comments and changes to this ticket

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Bug Tracker for Exponent CMS

Shared Ticket Bins

People watching this ticket

Tags

Pages