- Original Message -
From: "Rasmus Lerdorf" <[EMAIL PROTECTED]>
> > I know I could use HTMLSpecialChars() and then devise my own mark up
system;
>
> You could also define a list of tags you allow and pass them to the
> strip_tags() function. See http://php.net/strip_tags
>
Interesting.
> For my website I created an updating system in php. Where my staff and I can
> write articles that then get saved to the server, linked to, etc. I allowed
> html to be passed from the form because a lot of the staff likes to use html
> tags in their articles. Which I know is a security issue.
>
2 matches
Mail list logo
