Login | Register   
LinkedIn
Google+
Twitter
RSS Feed
Download our iPhone app
TODAY'S HEADLINES  |   ARTICLE ARCHIVE  |   FORUMS  |   TIP BANK
Browse DevX
Sign up for e-mail newsletters from DevX


Tip of the Day
Language: VBS,IIS4,IIS5
Expertise: beginner
May 13, 2000

Use Server.HTMLEncode for strings stored in a database

If your ASP pages display strings stored in database fields, you should always process the strings with the Server.HTMLEncode method, otherwise the string won't be displayed correctly in the user's browser if it contains characters that have a special meaning to HTML, such as the quote ("), the less-than (<) and greater-than (>) symbols, the ampersand symbol (&), and any character whose ANSI code is larger than 127.

Here's an example of how you should use the Server.HTMLEncode method:


Dim rs 
Set rs = Server.CreateObject("ADODB.Recordset")
rs.Open "products", "DSN=mydb"

' display the product name on the first line
Response.Write rs("product_name") & "&lt;BR&gt;"
' the Description field might contain special chars
Response.Write Server.HTMLEncode(rs("product_description"))
Francesco Balena
 
Comment and Contribute

 

 

 

 

 


(Maximum characters: 1200). You have 1200 characters left.

 

 

Sitemap
Thanks for your registration, follow us on our social networks to keep up-to-date