Comprehensive Special Character Escaping reform

Status: Alpha

Brought to you by: covert215

#2 Comprehensive Special Character Escaping reform

Status: open

Owner: nobody

Labels: Interface (example) (1)

Priority: 5

Updated: 2009-03-15

Created: 2009-03-15

Creator: Rob J

Private: No

I just kludged in some code to escape some special characters from the bracket submission page.

However, it doesn't escape all characters and on some pages, it shows the backslashes on displayed text.

Thus, we need to fix the submission and display of special characters everywhere.

It would be nice to have a consistent, app-wide way to handle this.

The app is probably vulnerable to sql injection attacks.

Botag - 2009-03-25

Slashes have been stripped from a few of the display pages, but a function really needs to be created to handle sanitizing and validation of form data.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link: