Porl123 Posted September 2, 2009 Share Posted September 2, 2009 Is it necessary to convert, for example a '&' into a '&' if you were just coding it into the page yourself and it couldn't be interfered with by the user. I've read in a couple of places that it's vital but I just wanted to make sure, is it really necessary? I do filter all the user entered data with htmlspecialchars but if I've entered it myself I don't really see a point. Anyway, any help is appreciated. thanks! Link to comment https://forums.phpfreaks.com/topic/172867-solved-manually-converted-symbols/ Share on other sites More sharing options...
mikesta707 Posted September 2, 2009 Share Posted September 2, 2009 its "good practice" to always sanitize things, but I admit I get lazy and don't bother sanitizing things that are hardcoded in. Link to comment https://forums.phpfreaks.com/topic/172867-solved-manually-converted-symbols/#findComment-911093 Share on other sites More sharing options...
TeNDoLLA Posted September 2, 2009 Share Posted September 2, 2009 If you are using the '&' in URLs it is not valid HTML. Use the & instead. If you decide to use & in urls you might encounter problems with some browsers. Link to comment https://forums.phpfreaks.com/topic/172867-solved-manually-converted-symbols/#findComment-911094 Share on other sites More sharing options...
Porl123 Posted September 2, 2009 Author Share Posted September 2, 2009 Ah, never knew that. I'll start converting them from now on :] thanks guys Link to comment https://forums.phpfreaks.com/topic/172867-solved-manually-converted-symbols/#findComment-911096 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.