|
In order to display the text area entries in HTML format, you need to use {FIXTEXTAREA:textareaField} tag. Normally if you leave text area entries untouched content will be printed as a single line. No formatting will be applied on entered text.
This is actually a security problem. Because some people can write harmful codes in text areas and this code will be executed your visitors' computers. Attackers may steal cookies or distort your site's design.
You should always use {FIXTEXTAREA:textareaFiled} tag while printing the entry on screen. This tag will automatically remove all harmfull codes and convert all new lines to HTML new lines (<br>).
Tags:
template tags security
Related Articles:
 Add a new comment
|
Send Comment