Kill stripslashes() calls since not needed on data from DB.
Wrap description in htmlspecialchars() call to avoid ' and " looking like end of string terminators, thus confusing the browser. We probably have this problem in a few other places.
Showing
Please register or sign in to comment