how to prevent this in codeigniter. The user may still wish to type this in so xss filtering is not an option

Recommended Answers

striptags?
htmlentities?

Jump to Post

All 4 Replies

Member Avatar

striptags?
htmlentities?

Thanks my issue was that htmlentitites wasn't properly escaping the £ sign.

I thought it was a real ballache to write

htmlentities($string,ENQUOTES,"UTF-8");

in all my views. So I have created my own helper function which wraps it up.

Member Avatar

OK solved?

Be a part of the DaniWeb community

We're a friendly, industry-focused community of 1.21 million developers, IT pros, digital marketers, and technology enthusiasts learning and sharing knowledge.