I read a few posts about HtmlEditFormat() and was curious, if you are taking user input from a form (input type = text or a textarea), should you always wrap htmleditformat(form.variable) around the form variable as you stick it into the database so as to preserve any single or double quotes?
If somone types 5" in an input box or a text area is my example of possible problems that may exists... What are others thoughts on this? Thanks Paul Giesenhagen QuillDesign ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
