PHP malicious code filtering function_PHP tutorial-PHP Tutorial-php.cn

php malicious code filtering function

Public Function DecodeFilter(html, filter)
html=LCase(html)
                filter=split(filter,",")
For Each i In filter
Select Case i
Case "Script" 'Remove all client scripts JavaScipt, VBScript, JScript, JS, VBS, Event, ...
                                                                                                                                                                                                                                                             Html = exce ("& lt;/? Script [^& gt;]*& gt;", "", html)
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               Case "TABLE":                     ' Remove the table

	Html = exce ("& lt;/? Tr [^& gt;]& gt;", "", "", html) Html = exce ("& lt;/? Th [^& gt;]& gt;", "", "", html) Html = exce ("& lt;/? Td [^& gt;]& gt;", "", "", html) Html = exce ("& lt;/? TBODY [^& gt;]& gt;", "", html) Case "class" 'to remove style class class = " Html = Exre ("(& lt; [^& gt;]+) class = [^\|^& gt;]([^& gt;]& gt;)", "$ 1 $ 2", html) Case "style" 'to remove style style = " Html = Exre ("(& lt; [^& gt;]+) style =" [^""] "" ([^& gt;]& gt;) "," $ 1 $ 2 ", html) Html = exce ("(& lt; [^& gt;]+) style = '[^']'([^& gt;]& gt;)", "$ 1 $ 2", html) Case "img" 'Remove style style = " Html = exce ("& lt;/? Img [^& gt;]& gt;", "", html) Case "XML" ' Remove XML Html = exere ("& lt; \? Xml [^& gt;]& gt;", "", html) Case "namespace" '' Remove the name space & lt; o & gt; & lt;/o & gt; Html = exce ("& lt;/? [A-z]+: [^& gt;]& gt;", "", html) Case "font" 'Remove the font & lt; font & gt; & lt;/font & gt; Html = Exray ("& lt;/? A [^& gt;]& gt;", "", "", html) Html = Exre ("& lt;/? Span [^& gt;]& gt;", "", "", html) Html = exce ("& lt;/? Br [^& gt;]& gt;", "", "", html) Case "marquee" 'Remove subtitles & lt; marquee & gt; & lt;/marquee & gt; ‐‐‐ out can be found Html = Exray ("& lt;/? Object [^& gt;]& gt;", "", html) 'html = exeRE("]>", "", html) Case "EMBED" Html = Exre ("& lt;/? Embed [^& gt;]& gt;", "", "", html) Case "DIV" 'Remove the object & lt; object & gt; & lt; param & lt; & lt; & lt;/object & gt; Html = exere ("& lt;/? Div ([^& gt;])& gt;", "$ 1", html) Html = exce ("& lt;/? P ([^& gt;])& gt;", "$ 1", html) Case "Online" 'Remove style style = " Html = Exre ("(& lt; [^& gt;]+) online =" "[^" "]" "([^& gt;]& gt;)", "$ 1 $ 2", html) html = exeRE("(<[^>]+) onload='[^']'([^>]>)", "$1 $2", html) Case "ONCLICK" ' 去除样式 html = exeRE("(<[^>]+) onclick=""[^""]""([^>]>)", "$1 $2", html) html = exeRE("(<[^>]+) onclick='[^']'([^>]>)", "$1 $2", html) Case "ONDBCLICK" ' 去除样式 html = exeRE("(<[^>]+) ondbclick=""[^""]""([^>]>)", "$1 $2", html) html = exeRE("(<[^>]+) ondbclick='[^']'([^>]*>)", "$1 $2", html) End Select Next 'html = Replace(html," 'html = Replace(html," 'html = Replace(html," DecodeFilter = html End Function http://www.bkjia.com/PHPjc/629754.htmlwww.bkjia.comtruehttp://www.bkjia.com/PHPjc/629754.htmlTechArticlephp 恶意代码过滤函数 Public Function DecodeFilter(html, filter) html=LCase(html) filter=split(filter,,) For Each i In filter Select Case i Case SCRIPT ' 去除所有客户端... Related labels： function php public code function malicious filter source：php.cn Previous article：php get post passes data security issues_PHP tutorial Next article：PHP string checking class_PHP tutorial Statement of this Website The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn Latest Articles by Author What is a NullPointerException, and how do I fix it? 2024-10-22 09:46:29 From Novice to Coder: Your Journey Begins with C Fundamentals 2024-10-13 13:53:41 Unlocking Web Development with PHP: A Beginner's Guide 2024-10-12 12:15:51 Demystifying C: A Clear and Simple Path for New Programmers 2024-10-11 22:47:31 Unlock Your Coding Potential: C Programming for Absolute Beginners 2024-10-11 19:36:51 Unleash Your Inner Programmer: C for Absolute Beginners 2024-10-11 15:50:41 Automate Your Life with C: Scripts and Tools for Beginners 2024-10-11 15:07:41 PHP Made Easy: Your First Steps in Web Development 2024-10-11 14:21:21 Build Anything with Python: A Beginner's Guide to Unleashing Your Creativity 2024-10-11 12:59:11 The Key to Coding: Unlocking the Power of Python for Beginners 2024-10-11 12:17:31 Latest Issues PHP arrays obtained from URL parameters do not behave as expected I have a URL parameter that contains the category ID and I want to treat it as an array li... From 2024-04-06 22:09:02 0 1 1428 Where should I place CustomLog directive in apache I'm using php:7.2-apachedocker. I need to disable health check url login access log. Based... From 2024-04-06 22:03:59 0 1 990 What is the format of the variables in the return value? I am a new learner of php. I found a piece of code: if($x<time()){return[false,'error']... From 2024-04-06 21:55:20 0 1 778 Problems encountered when using opentbs to generate odt files: values of the same key are displayed in the same row instead of separate columns. I'm using a library called OpenTbs to create odt using PHP, I'm using it because columns a... From 2024-04-06 20:18:18 0 1 483 Group MySQL results by ID for looping over I have a table with flight data in mysql. I'm writing a php code that will group and displ... From 2024-04-06 17:27:56 0 1 406 Related Topics More> What is function How to open php file js function function usage How to remove the first few elements of an array in php What to do if php deserialization fails How to connect php to mssql database How to connect php to mssql database How to upload html Popular Recommendations How to set up hosts on Mac computer (steps with pictures and text) Quickly build a simple QQ robot with PHP API common signature verification methods (PHP implementation) Collection of common date and time operations in PHP PHP generates graphic verification code (enhanced interference type) Popular Tutorials More> Related Tutorials Popular Recommendations Latest courses The latest ThinkPHP 5.1 world premiere video tutorial (60 days to become a PHP expert online training course) 1426941 PHP introductory tutorial one: Learn PHP in one week 4276831 JAVA Beginner's Video Tutorial 2573892 Little Turtle's zero-based introduction to learning Python video tutorial 509861 PHP zero-based introductory tutorial 866553 The latest ThinkPHP 5.1 world premiere video tutorial (60 days to become a PHP expert online training course) 1426941 times of learning JAVA Beginner's Video Tutorial 2573892 times of learning Little Turtle's zero-based introduction to learning Python video tutorial 509861 times of learning Quick introduction to web front-end development 216214 times of learning Master PS video tutorials from scratch 898221 times of learning [Web front-end] Node.js quick start 8160 times of learning Complete collection of foreign web development full-stack courses 6466 times of learning Go language practical GraphQL 5379 times of learning 550W fan master learns JavaScript from scratch step by step 737 times of learning Python master Mosh, a beginner with zero basic knowledge can get started in 6 hours 27333 times of learning Latest Downloads More> Web Effects Website Source Code Website Materials Front End Template [form button] jQuery enterprise message form contact code [Player special effects] HTML5 MP3 music box playback effects [Menu navigation] HTML5 cool particle animation navigation menu special effects [form button] jQuery visual form drag and drop editing code [Player special effects] VUE.JS imitation Kugou music player code [html5 special effects] Classic html5 pushing box game [Picture special effects] jQuery scrolling to add or reduce image effects [Photo album effects] CSS3 personal album cover hover zoom effect [Front-end template] Home Decor Cleaning and Repair Service Company Website Template [Front-end template] Fresh color personal resume guide page template [Front-end template] Designer Creative Job Resume Web Template [Front-end template] Modern engineering construction company website template [Front-end template] Responsive HTML5 template for educational service institutions [Front-end template] Online e-book store mall website template [Front-end template] IT technology solves Internet company website template [Front-end template] Purple style foreign exchange trading service website template [PNG material] Cute summer elements vector material (EPS PNG) [PNG material] Four red 2023 graduation badges vector material (AI EPS PNG) [banner picture] Singing bird and cart filled with flowers design spring banner vector material (AI EPS) [PNG material] Golden graduation cap vector material (EPS PNG) [PNG material] Black and white style mountain icon vector material (EPS PNG) [PNG material] Superhero silhouette vector material (EPS PNG) with different color cloaks and different poses [banner picture] Flat style Arbor Day banner vector material (AI+EPS) [PNG material] Nine comic-style exploding chat bubbles vector material (EPS+PNG) [Front-end template] Home Decor Cleaning and Repair Service Company Website Template [Front-end template] Fresh color personal resume guide page template [Front-end template] Designer Creative Job Resume Web Template [Front-end template] Modern engineering construction company website template [Front-end template] Responsive HTML5 template for educational service institutions [Front-end template] Online e-book store mall website template [Front-end template] IT technology solves Internet company website template [Front-end template] Purple style foreign exchange trading service website template Public welfare online PHP training，Help PHP learners grow quickly！ About us Disclaimer Sitemap © php.cn All rights reserved

Html = exce ("& lt;/? Tr [^& gt;]*& gt;", "", "", html)
Html = exce ("& lt;/? Th [^& gt;]*& gt;", "", "", html)
Html = exce ("& lt;/? Td [^& gt;]*& gt;", "", "", html)
Html = exce ("& lt;/? TBODY [^& gt;]*& gt;", "", html)
Case "class" 'to remove style class class = "
Html = Exre ("(& lt; [^& gt;]+) class = [^|^& gt;]*([^& gt;]*& gt;)", "$ 1 $ 2", html)
Case "style" 'to remove style style = "
Html = Exre ("(& lt; [^& gt;]+) style =" [^""] "" ([^& gt;]*& gt;) "," $ 1 $ 2 ", html)
Html = exce ("(& lt; [^& gt;]+) style = '[^']*'([^& gt;]*& gt;)", "$ 1 $ 2", html)
Case "img" 'Remove style style = "
Html = exce ("& lt;/? Img [^& gt;]*& gt;", "", html)
Case "XML" ' Remove XML
Html = exere ("& lt; \? Xml [^& gt;]*& gt;", "", html)
Case "namespace" '' Remove the name space & lt; o

& gt; & lt;/o

& gt;
Html = exce ("& lt;/? [A-z]+: [^& gt;]*& gt;", "", html)
Case "font" 'Remove the font & lt; font & gt; & lt;/font & gt;
                                                                                                                                                                                                                                                                          Html = Exray ("& lt;/? A [^& gt;]*& gt;", "", "", html)
Html = Exre ("& lt;/? Span [^& gt;]*& gt;", "", "", html)
Html = exce ("& lt;/? Br [^& gt;]*& gt;", "", "", html)
Case "marquee" 'Remove subtitles & lt; marquee & gt; & lt;/marquee & gt;
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         ‐‐‐ out can be found Html = Exray ("& lt;/? Object [^& gt;]*& gt;", "", html)
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   'html = exeRE("]*>", "", html)
Case "EMBED"
Html = Exre ("& lt;/? Embed [^& gt;]*& gt;", "", "", html)
Case "DIV" 'Remove the object & lt; object & gt; & lt; param & lt; & lt; & lt;/object & gt;
Html = exere ("& lt;/? Div ([^& gt;])*& gt;", "$ 1", html)
Html = exce ("& lt;/? P ([^& gt;])*& gt;", "$ 1", html)
Case "Online" 'Remove style style = "
Html = Exre ("(& lt; [^& gt;]+) online =" "[^" "]" "([^& gt;]*& gt;)", "$ 1 $ 2", html)
            html = exeRE("(<[^>]+) onload='[^']*'([^>]*>)", "$1 $2", html)
         Case "ONCLICK"    ' 去除样式
            html = exeRE("(<[^>]+) onclick=""[^""]*""([^>]*>)", "$1 $2", html)
            html = exeRE("(<[^>]+) onclick='[^']*'([^>]*>)", "$1 $2", html)
         Case "ONDBCLICK"    ' 去除样式
            html = exeRE("(<[^>]+) ondbclick=""[^""]*""([^>]*>)", "$1 $2", html)
            html = exeRE("(<[^>]+) ondbclick='[^']*'([^>]*>)", "$1 $2", html)

      End Select
   Next
   'html = Replace(html,"    'html = Replace(html,"    'html = Replace(html,"    DecodeFilter = html
End Function

Related labels：

function php public code function malicious filter

source：php.cn

Previous article：php get post passes data security issues_PHP tutorial Next article：PHP string checking class_PHP tutorial

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn