Storing htmlentities in database?
Storing htmlentities in database?
florianarndt
Posts: 7Questions: 3Answers: 1
Dear DTE-Community,
datatables editor is a great tool.
Just recently I discovered that when saving a text field with "A&B Ltd." it stores
"A&B Ltd."
in the database.
Is there an easy way to store it verbatim as "A&B Ltd." and display it correctly in HTML anyway?
This is needed because I do not always use database content in HTML, so the encoding is harming these uses.
Best regards,
Florian from Germany
This question has an accepted answers - jump to answer
This discussion has been closed.
Answers
Yes, you can disable the XSS security protection used by Editor. Make sure you use some protection in DataTables if you allow unencoded data to be entered by the end user.
Allan
Thanks Allan!