Question
Stripping out html from form submissions
My web developer is using the attached code to strip/disallow
html code from form submissions in an effort to prevent someone
from posting dangerous scripts or code via a form or blog.
Problem is, I DO want to at least allow people to post url links to external content like youtube videos, their own webstes, images etc.... Basically if it is something hosted AND viewed on a site other than mine I would like to give them the ability to link to it. How could I edit the code to allow links of this nature or is there a better way to do this?
My developer has basically told me there is no other way. It is either disallow it all or open it up. I disagree with this and am looking for a 2nd opinion.
Problem is, I DO want to at least allow people to post url links to external content like youtube videos, their own webstes, images etc.... Basically if it is something hosted AND viewed on a site other than mine I would like to give them the ability to link to it. How could I edit the code to allow links of this nature or is there a better way to do this?
My developer has basically told me there is no other way. It is either disallow it all or open it up. I disagree with this and am looking for a 2nd opinion.
AdChoices