HTML and XHTML both share the same set of special characters: & & ampersand > > greater-than sign < < less-than sign " " quotation mark
Any string passed by a form containing any of these characters should be encoded with htmlspecialchars ($str, ENT_NOQUOTES)<http://us2.php.net/manual/en/function.htmlspecialchars.php> Any string containing any of these characters from any source, which will be displayed in a text box or field, should be encoded with that function too. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "BoltWire" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/boltwire?hl=en -~----------~----~----~----~------~----~------~--~---
