There are many special characters that must be encoded to be viewed in HTML. Examples of these are:& (&), ” ("), < (<), and > (>)It is easy to hardcode these into your ASP, but if these characters exist in your database, you need to dynamically encode them. To do so, apply the HTMLEncode method to your recordset data before it is sent to the response object:
Response.Write Server.HTMLEncode(rs.Fields("my_field"))