Hacker News new | past | comments | ask | show | jobs | submit login

Why are you filtering any characters out?



cross site scripting and/or injection attacks


Why filter characters if you can just HTML-encode them?




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: