Zend Framework

Entries from April 2008

License

Original content in this work is licensed under a Creative Commons License

Powered by

Syndicate This Blog

RSS 2.0 feed

ATOM 1.0 feed

Planet PHP

Five tips for speeding up Eclipse PDT and Zend Studio - Zend Developer Zone

Wednesday, September 8. 2010

Project Importer v4.1 Release - Keith Casey

Wednesday, September 8. 2010

Adding new extensions to Zend Studio - PHP 10.0 Blog

Wednesday, September 8. 2010

The MongoDB vs MySQL debate… - Danne Lundqvist

Wednesday, September 8. 2010

Selenium & Saucelenium: installation and dbus-xorg-woes - till

Tuesday, September 7. 2010

mtrack: custom fields, snippets - Wez Furlong

Monday, September 6. 2010

The Miserable Mathematics of the Man-Month - Paul M. Jones

Monday, September 6. 2010

PHPVille almost released today - Philip Olson

Monday, September 6. 2010

a kudos to php geek felipe pena - Philip Olson

Monday, September 6. 2010

Learning how to help people contribute to the PHP.net Project - Philip Olson

Monday, September 6. 2010

Statistics

Last entry: 2010-09-06 08:33

415 entries written

1581 comments have been made

Topics from April, 2008

356 - An Example Zend Framework Blog Application - Part 4: Setting the Design ...

Tuesday, April 29. 2008. Posted by Pádraic Brady in PHP General PHP Security Zend Framework

355 - An Example Zend Framework Blog Application - Part 3: A Simple Hello World ...

Monday, April 28. 2008. Posted by Pádraic Brady in PHP General PHP Security Zend Framework

354 - Subversion for the Example Zend Framework Blog Tutorial Series

Thursday, April 24. 2008. Posted by Pádraic Brady in PHP General PHP Security Zend Framework

353 - An Example Zend Framework Blog Application - Part 2: The MVC Application ...

Wednesday, April 23. 2008. Posted by Pádraic Brady in PHP General PHP Security Zend Framework

351 - An Example Zend Framework Blog Application - Part 1: Introductory Planning

Tuesday, April 22. 2008. Posted by Pádraic Brady in PHP General PHP Security Zend Framework

View as PDF: Category Zend Framework | This month | Full blog

Calendar

Quicksearch

Comments

Tom Boutell about Zend Framework Proposal: Zend\Html\Filter (HTML Sanitisation And Manipulation)
Mon, 06.09.2010 13:42
This sounds like a good soluti on following the same principl es I followed in aHtml::simpli fy(). Since the Apostrop [...]

Bobby about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 17.08.2010 22:24
I just wanted to thank you for the article and the research. I was looking for a solution and was surprised to fin [...]

Tyson Sturdivant about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Mon, 16.08.2010 19:30
Does anyone have any input on "Universal Feed Parser" and it s effectiveness?

Pádraic Brady about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Mon, 16.08.2010 17:44
Is it a big table?

Don't wo rry about it - I'm completely harmless.

Miha about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Thu, 12.08.2010 15:59
OMG. What did I write. You men tioned html5lib in your post. And I go on mentioning just th at. /me is now ashamed [...]

Miha about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Wed, 11.08.2010 20:46
html5lib (http://code.google.c om/p/html5lib/) is the one I r un on a few days ago, so I'm p robably guessing that th [...]

Padraic Brady about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Wed, 11.08.2010 19:56
I haven't decided on it yet. A t the moment, many server side development tools are in the same boat. libxml2 and t [...]

Miha about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Wed, 11.08.2010 19:32
@Padraic: What will you do in a 6months when html5 becomes p opular and along with it stand ardized parser. Its prob [...]

Maarten about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Wed, 11.08.2010 12:45
looking forward to your soluti on. To be honest, we're using HTMLPurifier and I have yet to encounter big problems [...]

Padraic Brady about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 10.08.2010 18:44
Quoting from the original repo rt (26 June '10): "Bonus vu lnerability from a brief look through of the blacklist [...]

Jeremy Cook about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 10.08.2010 18:30
Thanks for the excellent artic le. Very informative.

Brett Bieber about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 10.08.2010 17:43
I believe you're incorrect reg arding the -ms-behavior css er ror in HTML_Safe. The blacklis t includes "behavior" wh [...]

Pádraic Brady about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 10.08.2010 11:18
Yes, it's being proposed to Ze nd Framework. HTMLPurifier rea lly is that good, largely beca use it properly normalis [...]

Pádraic Brady about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 10.08.2010 11:13
Hi Santosh, As the article notes, CSS may be used to styl e elements in such a way that may overlay or expand th [...]

Peter about HTML Sanitisation: The Devil's In The Details (And The Vulnerabilities)
Tue, 10.08.2010 10:15
So if HTML Purifier is that go od, will you still be proposin g your own for inclusion into Zend?