hi,is it safe to use these editors in websites for users and for webmasters ? I tried few but they seem to NOT work for the purpose if we try to sanitize the post data using htmlspecialchars and stripslashes functions in php. any other ways to sanitize data to avoid XSS attacks etc using these editors like fckeditor ?
Msg#: 3753426 posted 8:10 am on Sep 28, 2008 (gmt 0)
I wish I knew the answer to this and how to prevent it from happening. I use similar editing systems for my clients and I have not had any problems so far but it is always a concern. I do include a disclaimer against any criminal intrusions in my terms and conditions.