The HTML world has moved on in the ten years since DeXSS was first written. New technologies such as HTML5, CSRF, and CSP are unhandled. DeXSS remains available only as an historical artifact. Dynamic web sites which allow users to enter text content containing HTML are at risk for so-called cross-site scripting attacks (Wikipedia, Securitydocs) attacks. A common approach taken to mitigate this ri