i want to allow users to use html in a form, but i worry about security, so i do not want them to post code that would allow their own javascript or php. is there a way to allow users to use html only?
coopster
3:13 am on Jun 14, 2007 (gmt 0)
Sure, just edit check the POST data on the server side. You can remove any unwanted data using a number of available functions such as strip_tags [php.net], preg_replace [php.net], etc.
