Support the ongoing development of Laravel.io →

Forum Stripping tags when viewing

posted 11 years ago

Security Views

Security Views

Last updated 3 years ago.

0

replied 11 years ago

Try it with two of the {{'s.

For example:

Sanitized: {{{ $var }}}

Not sanitzied: {{ $var }}

Last updated 3 years ago.

0

replied 11 years ago

Solution

escaping is making sure the content doesn't get executed, so instead of an image, you see `<img ..> in plain text. That is safe. But if you want to remove all html, you can use http://php.net/strip_tags

Last updated 3 years ago.

0

replied 11 years ago

@barryvdh: thanks :)

Last updated 3 years ago.

0

replied 11 years ago

hi

http://laravel.io/bin/32r7

I used such code to display content (using cketditor) But it display content with html tags. Can u help me.

I tried with {{{$page->description}}} but no help

Last updated 3 years ago.

0

replied 11 years ago

Here I solved it with some help from uncle Google and some good guys like us that like to share their knowledge.

{{ preg_replace('/(<.*?>)|(&.*?;)/', '', $string) }}

the

(<.*?>)

seems to strip all the html tags pretty well.

(&.*?;)

strips all the HTML special characters, like:

© <, >

and other stuff

Last updated 3 years ago.

0

replied 11 years ago

Try

strip_tags($string)

It will give you just plain text form string. It helped of me.

Last updated 3 years ago.

0

Sign in to participate in this thread!

Native PHP

Your banner here too?

sivaganeshsg sivaganeshsg Joined 9 Feb 2014

Moderators

driesvints Joined 16 Dec 2013
joedixon Joined 23 Jun 2014
tvbeek Joined 8 Jan 2018

We'd like to thank these amazing companies for supporting us

NativePHP

Eventy

Fathom

Forge

Envoyer

Beyond Code

BairesDev

N-iX

Your logo here?

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

(Twitter) Bluesky GitHub

© 2025 Laravel.io - All rights reserved.

Terms of service Privacy policy Advertise