Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

When to use: htmlspecialchars? [duplicate]

Tags:

php

mysql

I need to convert my strings to special characters using:

 htmlspecialchars

My question is, should I convert my data before submitting it to a database or should I convert it before I display it?

like image 669
panthro Avatar asked Dec 21 '22 04:12

panthro

1 Answers

You should sanitize data before inserting it into a database, and escape it on retrieval.

htmlspecialchars is used for escaping, so it should be after you’ve fetched it from the database.

like image 129
Martin Bean Avatar answered Dec 22 '22 19:12

Martin Bean
Sign in to Comment

Related questions

PHP file_get_contents() and XML files [duplicate]
Converting csv files data to an array using php str_getcsv function
php - split by unknown regular expression
Laravel, converting data from raw query to JSON [duplicate]
Wkhtmltopdf - set footer font's staff
SQL update row where id = 1

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!