How can I secure my project from XSS using CKEditor? There is not good PHP BBCode Parser (at least I can't find one), so what should I do to validate the incoming string from CKEditor to prevent XSS? Or is out there a GOOD PHP Parser for BBCode that parses evereything from the CKEditor's BBCode?
You could try the HTMLPurifier, so you could even avoid bbcode.