Menu
How do you nest quotes in HTML beyond the second level? As far as I know, there are only 2 types of quotes - single(') and double("). I am aware of escaping using slashes - you have to escape in the code but that escaping won't work at the browser level. What is the accepted method to get around something like the following?
<p onclick="exampleFunc('<div id="divId"></div>');">Some Text</p> That code prints to the browser:
');">Some Text
233
The HTML <q> tag defines a short quotation. Browsers normally insert quotation marks around the quotation.
Use single quotes for a nested quotation, when someone repeats what someone else said. Joe smiled and said, "Jenny said 'yes' when I asked her to marry me." If you need another layer of quotation, just keep alternating between single and double quotation marks. "Joe was just here," said Susan.
Enclosing Quotation Marks That means strings containing single quotes need to use double quotes and strings containing double quotes need to use single quotes. "It's six o'clock."; 'Remember to say "please" and "thank you."'; Alternatively, you can use a backslash \ to escape the quotation marks.
Strings are created by putting data inside the quotes. JavaScript and other programming languages allow the users to keep the data either in double quotes (" ") or single quotes (' ').
You need to use proper escaping/encoding. Either in HTML using character references:
<p onclick="exampleFunc('<div id="divId"></div>');">Some Text</p> Or in JavaScript using string escape sequences:
<p onclick="exampleFunc('\x3Cdiv\x20id\x3D\x22divId\x22\x3E\x3C/div\x3E');">Some Text</p> Edit: this is not a solution for JavaScript in HTML, but for JavaScript only. My bad...
eval('eval(\"eval(\\\"alert(\\\\\\\"Now I\\\\\\\\\\\\\\\'m confused!\\\\\\\")\\\")\")'); Link. It's "recursive escaping".
32
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
