Menu
▾
▴
Re: [Core-lan-org-devel] Fw: Problem with < symbol
|
From: Andrew S. <and...@pa...> - 2003-01-23 08:15:30
|
Hi, It's being caused by striptags() in function safe_data (/includes/common.php). How about changing striptags() to htmlspecialchars()? That would prevent cross-scripting attacks (which is what striptags() is for), and still allow < and > to be displayed in a browser. Andrew On Wed, 22 Jan 2003 18:55:13 +0100 "Dennis Fleurbaaij" <de...@co...> wrote: > Hi Guys... > > It seems we still have a few bugs to squash before the new release :-( > > I knew that this had to come up sometimes but I know that this can be > fixed by the htmentities() function.. > > Greets, > Dennis > > |
