addFilter('Callback', array(array($this, 'filterHtml'))); } public function filterHtml($html) { /** * ััะบั XSS (http://www.exploit-db.com/exploits/25493/) */ if ($html && false !== stripos($html, ']+\>.*<\s*\/iframe\s*>/imU', $html, $matches)) { $matches = reset($matches); $matches = array_unique($matches); foreach ($matches as $match) { $decoded = rawurldecode($match); if (false !== stripos($decoded, '