add html_escape() function to escape HTML.

author: kenjis <kenji@codeigniter.jp> 2011-08-25 03:51:44 +0200
committer: kenjis <kenji@codeigniter.jp> 2011-08-25 03:51:44 +0200
commit: fbac8b4553942db4be52e872d9fd68717e5006e4 (patch)
tree: bbc95119f6c7cc0f89bf0ac8b6862711811d5623 /user_guide/general
parent: 0ba26c731cf8838b5239c1a7957bc18f58fe2f7d (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/user_guide/general/common_functions.html b/user_guide/general/common_functions.html
index 65457759d..7cff6321c 100644
--- a/user_guide/general/common_functions.html
+++ b/user_guide/general/common_functions.html
@@ -104,6 +104,8 @@ else<br />
 <p>This function prevents inserting null characters between ascii characters, like Java\0script.</p>
 
 
+<h2>html_escape(<var>$mixed</var>)</h2>
+<p>This function provides short cut for htmlspecialchars() function. It accepts string and array. To prevent Cross Site Scripting (XSS), it is very useful.</p>
 
 </div>
author	kenjis <kenji@codeigniter.jp>	2011-08-25 03:51:44 +0200
committer	kenjis <kenji@codeigniter.jp>	2011-08-25 03:51:44 +0200
commit	fbac8b4553942db4be52e872d9fd68717e5006e4 (patch)
tree	bbc95119f6c7cc0f89bf0ac8b6862711811d5623 /user_guide/general
parent	0ba26c731cf8838b5239c1a7957bc18f58fe2f7d (diff)