-2

I know "quotes" should be omitted because they let hackers write code for cross-client execution. Are there any other symbols that should be avoided?

AstroCB
  • 12,101
  • 20
  • 56
  • 70
user3195417
  • 309
  • 1
  • 2
  • 9
  • 1
    You *should* be escaping all user-generated content that gets printed, so all symbols should be allowed. If this is an issue, your code is broken and needs to be fixed. – Blender Feb 09 '14 at 12:21

1 Answers1

1

ALL symbols should be allowed. You need to make sure that you are escaping them properly.

Tims
  • 1,907
  • 13
  • 16