0

Hi!
I have been making a chat program.
In PHP I control user inputs with htmlentities so they can't write html. But this also ruins the precious æøåöüÿëäñ etc.. characters!
Would it be safe to only remove the < and >s?
Or is there another way to avoid this?

2
Contributors
5
Replies
6
Views
6 Years
Discussion Span
Last Post by ErlendHL
0

although you need to be a bit more precise as to what yer preventing...just html? or javascript/xss or some other form of malicious code ?

0

although you need to be a bit more precise as to what yer preventing...just html? or javascript/xss or some other form of malicious code ?

I want to prevent that people ruins it. I want no loopholes.

0

When I use htmlentities with the charset UTF-8, it works. Thanks for your help anyway :)

This question has already been answered. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.