XSS Protection is removing [removed] tags - but I don't want it to! :)

XSS Protection is removing [removed] tags - but I don't want it to! :)

El Forum
Guest

03-06-2010, 03:53 AM

[eluser]WanWizard[/eluser]
If you want your users to input HTML, Javascript, code, and what have you, you shouldn't clean it, but escape the input with htmlentities, so any HTML in the input becomes harmless.

Messages In This Thread

XSS Protection is removing [removed] tags - but I don't want it to! :) - by El Forum - 03-05-2010, 06:00 PM

XSS Protection is removing [removed] tags - but I don't want it to! :) - by El Forum - 03-06-2010, 03:53 AM