eleven0 Posted February 23, 2008 Share Posted February 23, 2008 I got a form which inserts data into my database.I submit HTML with that form. Then I output that data on my site. When I use "<" ">", it will save those characters as "<" and ">". When i go to Phpmyadmin and re-type the code as "<" ">" it works on my site. Any ideas? Quote Link to comment Share on other sites More sharing options...
drisate Posted February 23, 2008 Share Posted February 23, 2008 The vars are cleaned to prevent attacks. If you would like to display the stuff back to html use this if (!function_exists("htmlspecialchars_decode")) { function htmlspecialchars_decode($string, $quote_style = ENT_COMPAT) { return strtr($string, array_flip(get_html_translation_table(HTML_SPECIALCHARS, $quote_style))); } } then decode your var ex: echo htmlspecialchars_decode($my_html); Quote Link to comment Share on other sites More sharing options...
eleven0 Posted February 23, 2008 Author Share Posted February 23, 2008 Thanks, that worked. Quote Link to comment Share on other sites More sharing options...
drisate Posted February 23, 2008 Share Posted February 23, 2008 No problem ;-) Quote Link to comment Share on other sites More sharing options...
eleven0 Posted February 24, 2008 Author Share Posted February 24, 2008 Is it possible to pass PHP through this? Quote Link to comment Share on other sites More sharing options...
drisate Posted February 24, 2008 Share Posted February 24, 2008 no that only works to rebuild html out of strings passed into htmlentities() this <b>bold</b> would get back to <b>bold</b> using the function i gave you. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.