The current ZF2 escaper will double encode html entities so you can't use   © € in strings you call escapeHtml on.
Futhermore Owasp warns for double encoding (see https://www.owasp.org/index.php/Category:Encoding) Any suggestions? Thanks, Bart. -- View this message in context: http://zend-framework-community.634137.n4.nabble.com/ZF2-escapeHtml-double-encodes-html-entities-tp4656772.html Sent from the Zend Framework mailing list archive at Nabble.com. -- List: fw-general@lists.zend.com Info: http://framework.zend.com/archives Unsubscribe: fw-general-unsubscr...@lists.zend.com