how to prevent this in codeigniter. The user may still wish to type this in so xss filtering is not an option
iamthwee
iamthwee
diafol
striptags?
htmlentities?
iamthwee
Thanks my issue was that htmlentitites wasn't properly escaping the £ sign.
I thought it was a real ballache to write
htmlentities($string,ENQUOTES,"UTF-8");
in all my views. So I have created my own helper function which wraps it up.
diafol
OK solved?
Be a part of the DaniWeb community
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.