Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I am designing an basic ecommerce application, where I have a form to add product.
There are 2 text fields: product name, and description.
product name is input type="text", description is textarea
As user can input anything (worst case scenario), I want to remove all tags (no matter its PHP, HTML, JS, CSS, anything), so that I get just plain text (w/o any tags)
How can I achieve this?
Basically, I need to sanitize string, so any to make it plain text
If you just want to rip out all tags from the user input, then you can use the
strip_tags()function.A better option would be to run the user input through HTML Purifier. It’s a more complete clean.