Hi!
I'm a happy user of htmlpurifier for some time, but sometimes I get very
confused about testing if it works in my websites.
I found this:
http://ha.ckers.org/xss.html
The problem is that I'm not sure that things here are filtered as for
example this:
<SCRIPT SRC=
http://ha.ckers.org/xss.js></SCRIPT>
... stays in the source after filtering.
Is there a guide for newbies on testing?
Tamas Baka
Hungary