How to get rid of XSS with a remote page in a frame?

Warning: count(): Parameter must be an array or an object that implements Countable in /home/styllloz/public_html/qa-theme/donut-theme/qa-donut-layer.php on line 274
0 like 0 dislike
To simplify the example, the following code

On the page is a form:

Which betrays the file getpage.php in the frame:

The file itself getpage.php gives the body of the page:
<?$url = $_POST['url'];$page = file_get_html($url);echo $page;?>

If the remote page contains XSS code, then will it to my site and if so, how to get rid of it?
by | 5 views

1 Answer

0 like 0 dislike
and if you just before conclusion in getpage.php cut all possible xss in $page?

Related questions

110,608 questions
257,186 answers
28,151 users