[eluser]UnknownPlayer[/eluser]
Hi,
should i use mysql_real_string_escape on fields when i insert in db, becouse i use xss_clean ?
i use
htmlentities($var,ENT_QUOTES, UTF-8), i need sugestion, should i use
ENT_QUOTES or something else when echo ? (this doesn't need to be used on input tags?)
And on echo i need to use stipsplashes when magic quotes are off ?
Anyway, i use latin characters like čćšžđ, so can you tell me what is best to use of these settings htmlentities, stripsplashes or ?
