wp_strip_all_tags( string $string, bool $remove_breaks = false )

Properly strip all HTML tags including script and style

Contents

Description Description

This differs from strip_tags() because it removes the contents of the <script> and <style> tags. E.g. strip_tags( '<script>something</script>' ) will return ‘something’. wp_strip_all_tags will return ”

Parameters Parameters

$string

(string) (Required) String containing HTML tags

$remove_breaks

(bool) (Optional) Whether to remove left over line breaks and white space chars

Default value: false

Top ↑

Return Return

(string) The processed string.

Top ↑

Source Source

File: wp-includes/formatting.php 

function wp_strip_all_tags( $string, $remove_breaks = false ) {
	$string = preg_replace( '@<(script|style)[^>]*?>.*?</\\1>@si', '', $string );
	$string = strip_tags( $string );

	if ( $remove_breaks ) {
		$string = preg_replace( '/[\r\n\t ]+/', ' ', $string );
	}

	return trim( $string );
}

Expand full source code Collapse full source code View on Trac

Top ↑

Changelog Changelog

Changelog
Version Description
2.9.0 Introduced.

Top ↑

More Information More Information

wp_strip_all_tags() is added to the following filters by default (see wp-includes/default-filters.php):

  • pre_comment_author_url
  • pre_user_url
  • pre_link_url
  • pre_link_image
  • pre_link_rss
  • pre_post_guid

It is also applied to these filters by default when on the administration side of the site:

  • user_url
  • link_url
  • link_image
  • link_rss
  • comment_url
  • post_guid

Top ↑

Top ↑

Used By Used By

Used By
Used By Description
wp-includes/class-wp-recovery-mode-email-service.php: WP_Recovery_Mode_Email_Service::send_recovery_mode_email()

Sends the Recovery Mode email to the site admin email address.
wp-includes/formatting.php: _sanitize_text_fields()

Internal helper function to sanitize a string from user input or from the db
wp-admin/includes/class-wp-screen.php: WP_Screen::render_list_table_columns_preferences()

Render the list table columns preferences.
wp-admin/includes/class-wp-list-table.php: WP_List_Table::single_row_columns()

Generates the columns for a single row of the table
wp-admin/includes/class-wp-users-list-table.php: WP_Users_List_Table::single_row()

Generate HTML for a single row on the users.php admin panel.
wp-admin/includes/media.php: media_upload_form_handler()

Handles form submissions for the legacy media uploader.
wp-admin/includes/post.php: edit_post()

Update an existing post with values provided in $_POST.
wp-admin/includes/ajax-actions.php: wp_ajax_save_attachment()

Ajax handler for updating attachment attributes.
wp-includes/formatting.php: wp_html_excerpt()

Safely extracts not more than the first $count characters from html string.
wp-includes/formatting.php: wp_trim_words()

Trims text to a certain number of words.
wp-includes/formatting.php: sanitize_user()

Sanitizes a username, stripping out unsafe characters.
wp-includes/comment.php: wp_blacklist_check()

Does comment contain blacklisted characters or words.
Show 7 more used by Hide more used by

Top ↑

User Contributed Notes User Contributed Notes

You must log in before being able to contribute a note or feedback.