标签: php security xss domdocument
如果我正在提供由DOMDocument生成的HTML页面,在将用户输入应用于DOMElement节点的值时,是否必须担心XSS漏洞?
// (object) Instance of DOMElement $node->nodeValue = $someUserInput; // <-- Is this safe from XSS attacks?