htmlpurifier
htmlpurifier copied to clipboard
ezyang
Standards compliant HTML filter written in PHP
When provided with a large HTML document (over a million characters) the `Core.AggressivelyFixLt` regex results in catastrophic backtracking and `$html = null` being returned. TLDR; HTMLPurifier gives you back a...
Hello, I am trying to add support for some additional elements (many of them HTML5) that are not supported by default. To do this, I followed the customize documentation here:...
input: ```html hello, world! ``` output: ```html hello, world! ``` is it possible to configure htmlpurifier to allow the body element? edit: the original output I included was modified by...
Using Laravel 11.36.1 with PHP 8.3, `mews/purifier` 3.4.2 and the latest version of `ezyang/htmlpurifier`. When validating `Number` custom attributes, I get the following exception when i want to purify this...
`Directory /var/www/html/vendor/ezyang/htmlpurifier/library/HTMLPurifier/DefinitionCache/Serializer not writable.` Why does this library need the vendor folder on which it lives to be writeable? It seems unnecessary, and it opens the possibility of vulnerabilities.
When **multiple requests** are sent to the server at the same time. The following error occurs.  Why is it not checked that the file exists when the file is...
