👌 improve on security

Author: otengkwame

framework/core/Security.php

@@ -133,13 +133,13 @@ class CI_Security {
 	 * @var	array
 	 */
 	protected $_never_allowed_str =	array(
-		'document.cookie' => '[removed]',
-		'(document).cookie' => '[removed]',
-		'document.write'  => '[removed]',
-		'(document).write'  => '[removed]',
-		'.parentNode'     => '[removed]',
-		'.innerHTML'      => '[removed]',
-		'-moz-binding'    => '[removed]',
+		'document.cookie' => '[sesa-me-o]',
+		'(document).cookie' => '[sesa-me-o]',
+		'document.write'  => '[sesa-me-o]',
+		'(document).write'  => '[sesa-me-o]',
+		'.parentNode'     => '[sesa-me-o]',
+		'.innerHTML'      => '[sesa-me-o]',
+		'-moz-binding'    => '[sesa-me-o]',
 		'<!--'            => '&lt;!--',
 		'-->'             => '--&gt;',
 		'<![CDATA['       => '&lt;![CDATA[',
@@ -492,7 +492,7 @@ public function xss_clean($str, $is_image = FALSE)
 
 			if (preg_match('/script|xss/i', $str))
 			{
-				$str = preg_replace('#</*(?:script|xss).*?>#si', '[removed]', $str);
+				$str = preg_replace('#</*(?:script|xss).*?>#si', '[sesa-me-o]', $str);
 			}
 		}
 		while ($original !== $str);
@@ -1056,7 +1056,7 @@ protected function _do_never_allowed($str)
 
 		foreach ($this->_never_allowed_regex as $regex)
 		{
-			$str = preg_replace('#'.$regex.'#is', '[removed]', $str);
+			$str = preg_replace('#'.$regex.'#is', '[sesa-me-o]', $str);
 		}
 
 		return $str;