'<', '>' => '>', '[i]' => '', // deprecated by em '[/i]' => '', // deprecated by em '[em]' => '', '[/em]' => '', '[b]' => '', // deprecated by strong '[/b]' => '', // deprecated by strong '[strong]' => '', '[/strong]' => '', '[tt]' => '', // deprecated by CODE or KBD '[/tt]' => '', // deprecated by CODE or KBD '[code]' => '', '[/code]' => '', '[kbd]' => '', '[/kbd]' => '', '[br]' => '
', '[/a]' => '', ); $sanitized_message = strtr($message, $replace_pairs); $sanitized_message = preg_replace( '/\[a@([^"@]*)@([^]"]*)\]/e', '\'\'', $sanitized_message); return $sanitized_message; } /** * removes javascript * * @uses trim() * @uses strtolower() * @uses substr() * @param string uri */ function PMA_sanitizeUri($uri) { $uri = trim($uri); if (strtolower(substr($uri, 0, 10)) === 'javascript') { return ''; } return $uri; } ?>