Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Using CodeIgniter General Help escaping output in CodeIgniter
escaping output in CodeIgniter
  • Offline june123
    Junior Member
  • **
  • Posts: 27
    Threads: 9
    Joined: Jun 2016
    Reputation: 0
#1
07-24-2017, 04:27 AM

Filter Input, Escape Output.

After filtering input, I am using html_escape function to escape database output before displaying it in the browser.

Quote:$query = $this->db->query($sentstring); //returns list of users

$data['user'] = html_escape($query->result());

Now result() returns an array of objects and html_escape expects a string. So I am getting the error 

Quote:Message: htmlspecialchars() expects parameter 1 to be string, object given

Filename: core/Common.php

How do  resolve this issue? Also is my method of escaping output s proper way?
Reply


Messages In This Thread
escaping output in CodeIgniter - by june123 - 07-24-2017, 04:27 AM
RE: escaping output in CodeIgniter - by june123 - 07-24-2017, 08:00 AM
RE: escaping output in CodeIgniter - by PaulD - 07-24-2017, 10:56 AM
RE: escaping output in CodeIgniter - by june123 - 07-25-2017, 04:44 AM
RE: escaping output in CodeIgniter - by june123 - 07-25-2017, 10:31 PM



Theme © iAndrew 2016 - Forum software by © MyBB