2011-11-18, 01:06 AM
Pages: 1 2
2011-11-18, 01:17 AM
(2011-11-18, 12:19 AM)dragonexpert Wrote: [ -> ]If you are storing the content in a database you should also use htmlspecialchars_uni function.
If the content isn't shown to the user there's no reason to run it through specialchars, it could just introduce problems in the long-run.
@Tom K. The escape_string method just sanitizes inputs for database interaction; it won't run specialchars.
Pages: 1 2