Gossamer Forum: Products: Gossamer Links: Development, Plugins and Globals: escape

Gossamer Threads

Home : Products : Gossamer Links : Development, Plugins and Globals :

escape_html Description

Apr 30, 2016, 3:04 AM

tora

User (122 posts)

Apr 30, 2016, 3:04 AM

Shortcut

escape_html Description

I have Descriptions written in a variety of languages. They work fine when created and when listed.

However, when the Descriptions are to be modified, the <%escape_html Description%> gives a messy bunch of characters, not the writing of another language.

I understand about html, and the risk of XSS attacks.

How can I give my user their Description in their language so they can modify it, without subjecting the site to the risk of XSS attacks?

Thanks,
Tora

Subject	Author	Views	Date
escape_html Description	tora	9007	Apr 30, 2016, 3:04 AM

Re: [tora] escape_html Description	Andy	8922	Apr 30, 2016, 3:32 AM

Re: [Andy] escape_html Description	tora	8905	Apr 30, 2016, 5:23 AM

Re: [tora] escape_html Description	Andy	8927	Apr 30, 2016, 5:27 AM

Re: [Andy] escape_html Description	tora	8891	Apr 30, 2016, 7:02 AM

Re: [tora] escape_html Description	Andy	8884	Apr 30, 2016, 7:24 AM

Re: [Andy] escape_html Description	tora	8872	Apr 30, 2016, 7:48 AM

Re: [tora] escape_html Description	Andy	8854	Apr 30, 2016, 7:57 AM

Re: [Andy] escape_html Description	tora	8861	May 1, 2016, 2:58 AM

Re: [tora] escape_html Description	Andy	8839	May 1, 2016, 8:16 AM

Re: [Andy] escape_html Description	tora	8834	May 1, 2016, 8:32 AM

Re: [tora] escape_html Description	tora	8757	May 4, 2016, 3:39 AM

Gossamer Threads is a Vancouver-based company with over 28 years experience in web technology. From development to hosting, we partner with leading organizations around the globe and help to build their web presences, strategies and infrastructures.

Let’s talk: 1-877-715-7676