PHP Codeigniter bypass html_scape function

Question

I am running a php codeigniter app, and I need to bypass the html_escape function to insert embeded html code into the database.

This is an example of what I need to insert into the DB:

<script type='text/javascript' charset='utf-8' scr='https://www.buzzsprout.com/423805.js?container_id=buzzsprout-small-player-423805&player=small'></script>

I've tried

$data['url'] = $this->input->post('podcast_url');

But it keeps inserting [removed][removed] to the DB. If I use just the link, it works fine.

Is there a way to bypass that?

I am not sure to have understand your problem. I suppose you have to write " — deste, Apr 21 '20 at 22:11

score 0 · Answer 1 · answered Apr 22 '20 at 05:59

0

Change the configuration in application/config/config.php to

$config['global_xss_filtering'] = FALSE;

Reference

Related question :- Codeigniter - Disable XSS filtering on a post basis

answered Apr 22 '20 at 05:59

Dum

1,431
2
9
23

PHP Codeigniter bypass html_scape function

1 Answers1