Yu can do this by using the htmleditformat() on your stuff either before it goes in or when it is displayed.
>the solution is simple >strip out javascript and HTML from form posts >by replacing < and > with > and < and the word 'javascript' with java >script or something >that way if code is posted it will be rendered ineffective >cflib has a bit of code to do just that AFAIK > HTH > Matt -- These lists are syncronised with the CFDeveloper forum at http://forum.cfdeveloper.co.uk/ Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ CFDeveloper Sponsors and contributors:- *Hosting and support provided by CFMXhosting.co.uk* :: *ActivePDF provided by activepdf.com* *Forums provided by fusetalk.com* :: *ProWorkFlow provided by proworkflow.com* *Tutorials provided by helmguru.com* :: *Lists hosted by gradwell.com* To unsubscribe, e-mail: [EMAIL PROTECTED]
