[eluser]sorenchr[/eluser]
Hi there, the CI documentation states the following for xss_clean:
Quote:Filters the POST/COOKIE array keys, permitting only alpha-numeric (and a few other) characters.
It doesn't really say which characters are allowed
. Anyway, is this function sufficient for sanitizing your database input?