function cleanXSS(s) {

	if (s.indexOf("<?xml") != -1) {
		return s;
	}

	if (s.indexOf("&#115;&#99;&#114;&#105;&#112;&#116;") != -1) {
		s = s.replace(new RegExp("&#115;&#99;&#114;&#105;&#112;&#116;", "gi"),
				"&#115;&#99;&#114;-&#105;&#112;&#116;");
	}
	// if (s.indexOf("<")!=-1 && (s.toLowerCase().indexOf("script")!=-1)) {
	if (s.indexOf("<") != -1) {

		var temp = s.toLowerCase();
		temp = temp.replace(new RegExp("<", "gi"), "&lt;");
		if (temp.indexOf(">") != -1) {
			temp = temp.replace(new RegExp(">", "gi"), "&gt;");
		}
		s = temp;
	}

	if (s.indexOf("alert") != -1 && s.indexOf("(") != -1) {
		s = s.replace(new RegExp("alert", "gi"), "alert:");
	}
	if (s.toLowerCase().indexOf("<img") != -1) {
		var temp = s.toLowerCase();
		s = temp.replace(new RegExp("<img", "gi"), "<imm");
	}
	if (s.toLowerCase().indexOf("href=") != -1) {
		var temp = s.toLowerCase();
		s = temp.replace(new RegExp("href=", "gi"), "href:=");
	}
	if (s.toLowerCase().indexOf("<iframe") != -1) {
		var temp = s.toLowerCase();
		s = temp.replace(new RegExp("<iframe", "gi"), "<i-frame");
	}
	if (s.toLowerCase().indexOf("@import") != -1) {
		var temp = s.toLowerCase();
		s = temp.replace(new RegExp("@import", "gi"), "@-import");
	}
	if (s.indexOf("expression(") != -1) {
		s = s.replace(new RegExp("expression", "gi"), "expression-");
	}
	if (s.indexOf("<!--") != -1) {
		s = s.replace(new RegExp("<", "gi"), "&lt;");
	}
	if (s.indexOf("-->") != -1) {
		s = s.replace(new RegExp(">", "gi"), "&gt;");
	}

	s = s.replace(new RegExp("eval\\((.*)\\)", "gi"), "");
	s = s.replace(new RegExp("[\\\"\\'][\\s]*javascript:(.*)[\\\"\\']", "gi"),
			"\"\"");
	if (s.toLowerCase().indexOf("javascript") != -1) {
		var temp = s.toLowerCase();
		s = temp.replace(new RegExp("javascript", "gi"), "");
	}

	if (s.indexOf("style=") != -1) {
		s = s.replace(new RegExp("style=", "gi"), "sty-le=");
	}
	return s;
}
function xssValidate(formFields) {
				var demoFormFieldsArray = formFields.split(';');
				var demoFormFieldsLen = demoFormFieldsArray.length;
				var tempObj = "";
				var tempCount = "";
				for(i=0; i<demoFormFieldsLen; i++) {
					tempObj = document.getElementById(demoFormFieldsArray[i]);
					if(tempObj) {
						if('select-one'==tempObj.type || 'select-multiple'==tempObj.type) {
							tempCount = tempObj.length;
							for(j=0; j<tempCount; j++) {
								tempObj.options[j].value = cleanXSS(tempObj.options[j].value);
							}
							tempObj.value = cleanXSS(tempObj.value);
						} else {
							tempObj.value = cleanXSS(tempObj.value);
						}
					}
				}
				return;
			}	
	function checkSearchInputBody() 
  {
		var userInput = document.search.keywordField.value;
		document.search.keywordField.value = cleanXSS(userInput);
		return;
  }