[TYPO3-core] strip_tags used in cObj->getAltParam - why?
Ernesto Baschny [cron IT]
ernst at cron-it.de
Tue May 23 10:28:28 CEST 2006
Martin Kutschker schrieb am 23.05.2006 09:36:
> There is no point in useing strip_tags as the value of the attribues is
> run through htmlspecialchars. It is not needed at all but disables all
> attributes with angle brackets.
If someone has "this is <b>my alt-text</b>" in the alt-text field, it
would get "this is my alt-text" using strip_tags. I think as this has
always (?) been like that, I would rather leave it that way.
Btw, strip_tags doesn't remove the "<" in for example "testing < this".
Cheers,
Ernesto
More information about the TYPO3-team-core
mailing list