| [ Index ] | PHP Cross Reference of Mambo 4.6.5 |
|
| [ Variables ] [ Functions ] [ Classes ] [ Constants ] [ Statistics ] | ||
[Source view] [Print] [Project Stats]
(no description)
| File Size: | 327 lines (12 kb) |
| Included or required: | 2 times |
| Referenced: | 2 times |
| Includes or requires: | 0 files |
InputFilter:: (10 methods):
inputFilter()
process()
remove()
filterTags()
filterAttr()
badAttributeValue()
decode()
safeSQL()
quoteSmart()
escapeString()
Class: InputFilter - X-Ref
| inputFilter($tagsArray = array() X-Ref |
| Constructor for inputFilter class. Only first parameter is required. param: Array $tagsArray - list of user-defined tags param: Array $attrArray - list of user-defined attributes param: int $tagsMethod - 0= allow just user-defined, 1= allow all but user-defined param: int $attrMethod - 0= allow just user-defined, 1= allow all but user-defined param: int $xssAuto - 0= only auto clean essentials, 1= allow clean blacklisted tags/attr |
| process($source) X-Ref |
| Method to be called by another php script. Processes for XSS and specified bad code. param: Mixed $source - input string/array-of-string to be 'cleaned' return: String $source - 'cleaned' version of input parameter |
| remove($source) X-Ref |
| Internal method to iteratively remove all unwanted tags and attributes param: String $source - input string to be 'cleaned' return: String $source - 'cleaned' version of input parameter |
| filterTags($source) X-Ref |
| Internal method to strip a string of certain tags param: String $source - input string to be 'cleaned' return: String $source - 'cleaned' version of input parameter |
| filterAttr($attrSet) X-Ref |
| Internal method to strip a tag of certain attributes param: Array $attrSet return: Array $newSet |
| badAttributeValue( $attrSubSet ) X-Ref |
| Function to determine if contents of an attribute is safe param: Array A 2 element array for attribute [name] and [value] return: Boolean True if bad code is detected |
| decode($source) X-Ref |
| Try to convert to plaintext param: String $source return: String $source |
| safeSQL($source, &$connection) X-Ref |
| Method to be called by another php script. Processes for SQL injection param: Mixed $source - input string/array-of-string to be 'cleaned' param: Buffer $connection - An open MySQL connection return: String $source - 'cleaned' version of input parameter |
| quoteSmart($source, &$connection) X-Ref |
author: Chris Tobin author: Daniel Morris param: String $source param: Resource $connection - An open MySQL connection return: String $source |
| escapeString($string, &$connection) X-Ref |
author: Chris Tobin author: Daniel Morris param: String $source param: Resource $connection - An open MySQL connection return: String $source |
| Generated: Wed Feb 8 00:05:01 2012 | Cross-referenced by PHPXref 0.7 |
| Mambo API: Mambo is Free software released under the GNU/General Public License, Version 2 |