sixonetonoffun writes:If you are running PHPNuke and have the img tag in your allowed html array in config.php you need this hack! This hack replaces the code in the check_html function with KSES which works much better for filtering attributes such as style= out of allowed tags. If something is not in the allowed attribute array it gets stripped out period. So if you are using a WYSIWYG editor for you Submit News ect... you need to know that by allowing img in the phpnuke allowed array you are also allowing other attributes that can be easily exploited.You can get it HERE Any comments or concerns can be posted to my forum.
Related
Re: Safer HTML for PHPNuke (Score: 1) |  | Six, I am unable to register or see your forums. I get an 'unable to display page' with both. Can I use this with 6.5? |
| Re: Safer HTML for PHPNuke (Score: 1) by sixonetonoffun on Tuesday, August 17, 2004 @ 22:37:52 UTC (User Info | Send a Message) | |
Responded in private message. If anyone else is having trouble with that site let me know. I'm going to drop some ip range blocks other then that I can't think of any other reason for trouble there. |
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
