[TYPO3-mvc] viewhelpers: stripHTML & removeXSS - what should be tested?
Helmut Hummel
typo3 at jhpc.de
Thu May 21 17:37:17 CEST 2009
Hi Steffen,
Am 20.05.2009 10:39 Uhr, schrieb Steffen Kamper:
>
> Helmut Hummel schrieb:
>> Aren't there testcases for removeXSS already? I think Steffen Kamper
>> did something about this?
>
> what i did is testing it with an xml of hackers.org. I used for
> enhancing the class, you'll find it here
> http://www.sk-typo3.de/index.php?id=370
Yeah, that's what I meant. I could not find it on your site. I think
testing a XSS filter function is not an easy task, but the XML from
ha.ckers.org is a good start to what such a function should at least be
able to filter.
Regrads Helmut
More information about the TYPO3-project-typo3v4mvc
mailing list