"Marek Kilimajer" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > The correct way is: > In validate.php: > if(error) { > if(magic_quotes) stripslashes(); > urlencode(); > } else { > INSERT INTO ... > } > > In form.php: > // urldecode() is not needed, GET variables are already decoded > if(magic_quotes) stripslashes(); > <textarea><?= htmlspecialchars()?></textarea> > >
Thanks!!! :-) -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php