-2

I know "quotes" should be omitted because they let hackers write code for cross-client execution. Are there any other symbols that should be avoided?

AstroCB
  • 12,337
  • 20
  • 57
  • 73
user3195417
  • 329
  • 1
  • 2
  • 9
  • 1
    You *should* be escaping all user-generated content that gets printed, so all symbols should be allowed. If this is an issue, your code is broken and needs to be fixed. – Blender Feb 09 '14 at 12:21

1 Answers1

1

ALL symbols should be allowed. You need to make sure that you are escaping them properly.

Tims
  • 1,987
  • 14
  • 16