I don't know that this would add much to us, but it seems like a useful function. I think I'm more or less content with making sure < is taken care of.
That seems to be the approach Pm used, though BoltWire's page format is more open. So we probably have need to be more careful... Cheers, Dan On Sun, Oct 11, 2009 at 4:23 AM, Hans <[email protected]> wrote: > If you wanted to have addition security, instead of using htmlspecialchars() > you could use the two functions shown on this page: > Fortify PHP Webapps against Cross-Site-Scripting > > The main function converts any utf-8 character, which is not an ASCII > literal character, numeral or punctuation, into a hexadecimal unicode > entity. > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "BoltWire" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/boltwire?hl=en -~----------~----~----~----~------~----~------~--~---
