Preventing Javascript on User comments and User Signatures

[EineyEntertainment]

Any ideas on how to prevent Javascript from being used here? Its annoying the hell out of me that one guy has done this. I'm searching the web with no real avail. I'm about 2 seconds from just scrapping the features

[EineyEntertainment]

Re: Preventing Javascript on User comments and User Signatures

I should have posted the code up here, I have no idea where I should set it up at :)

[Carnage]

Re: Preventing Javascript on User comments and User Signatures

Well I was just letting you know it could be put in it. Sorry to be annoying.

[Karlos]

Re: Preventing Javascript on User comments and User Signatures

Or even better.. htmlspecialchars()

[EineyEntertainment]

Re: Preventing Javascript on User comments and User Signatures

Carnage, it wasn't annoying what you did...the fact that it could happen was annoying me. Sorry about last night it was 2:15 in the morning and I was tired from a long night. I tried to go to sleep, but the whole issue kept me up.

Ty for pointing it out, because without you or Some, I would still have a major exploit :)

[DELETE ME NOW!]

Re: Preventing Javascript on User comments and User Signatures

EineyEntertainment here.

$sig = mysql_real_escape_string(strip_tags($_POST['newsig']));

mysql_query("UPDATE `users` SET `sig`='".$sig."' WHERE (`userid` = $userid)");

And your done.. same as (SomeRandomBastard) one... just with the query..

[EineyEntertainment]

Re: Preventing Javascript on User comments and User Signatures

lol ty crazy, Random helped me out last night. but its great for other users to see the code. Like I said before, you rock :)

[DELETE ME NOW!]

Re: Preventing Javascript on User comments and User Signatures

lol ok ty