Open ErikWillems opened 8 years ago
I found this repo by Googling. Although this is not a very active repo, I would like to point an important issue that needs to be fixed before you should use this piece of code.
PHP's DOMDocument is likely to be vulnerable to a XML External Entity attack, Billion laughs and more! Good article about risks
Use this line to disable the entity loader: libxml_disable_entity_loader(true);
I found this repo by Googling. Although this is not a very active repo, I would like to point an important issue that needs to be fixed before you should use this piece of code.
PHP's DOMDocument is likely to be vulnerable to a XML External Entity attack, Billion laughs and more! Good article about risks
Use this line to disable the entity loader: libxml_disable_entity_loader(true);