https://legacy.forums.gravityhelp.com/topic/submitted-content-truncated-rgformsmodelprepare_value Gravity Support Forums Topic: Submitted content truncated (RGFormsModel::prepare_value) en-US Mon, 20 Apr 2026 11:59:21 +0000 http://bbpress.org/?v=1.0.1 q https://legacy.forums.gravityhelp.com/search.php https://legacy.forums.gravityhelp.com/topic/submitted-content-truncated-rgformsmodelprepare_value#post-117036 Tue, 08 Jan 2013 20:34:50 +0000 Chris Hajer 117036@https://legacy.forums.gravityhelp.com/ <p>Craig, I am going to close this topic and focus the support on the topic you currently have open for this issue. Thank you. </p> https://legacy.forums.gravityhelp.com/topic/submitted-content-truncated-rgformsmodelprepare_value#post-116938 Tue, 08 Jan 2013 16:01:32 +0000 CraigTommola 116938@https://legacy.forums.gravityhelp.com/ <p>How might I allow HTML in the confirmation message? I am using a modification in the functions.php file to generate a dynamic confirmation message and it appears strip_tags is removing my link from the type.</p> <p>See here for details:<br /> <a href="http://www.gravityhelp.com/forums/topic/adding-a-link-to-a-dynamic-confirmation-message" rel="nofollow">http://www.gravityhelp.com/forums/topic/adding-a-link-to-a-dynamic-confirmation-message</a> </p> https://legacy.forums.gravityhelp.com/topic/submitted-content-truncated-rgformsmodelprepare_value#post-55580 Tue, 17 Apr 2012 17:54:41 +0000 bu 55580@https://legacy.forums.gravityhelp.com/ <p>I understand--a lot of thought goes into changes like this. Thanks! </p> https://legacy.forums.gravityhelp.com/topic/submitted-content-truncated-rgformsmodelprepare_value#post-54464 Fri, 06 Apr 2012 11:49:05 +0000 Alex Cancado 54464@https://legacy.forums.gravityhelp.com/ <p>You have a valid point and I am willing to consider it. I will run it by the team and see what the others say. As you know, this is a change that will affect every field, so we need to be careful when implementing it. It is not something we can just get done quickly. </p> https://legacy.forums.gravityhelp.com/topic/submitted-content-truncated-rgformsmodelprepare_value#post-54389 Thu, 05 Apr 2012 16:01:15 +0000 bu 54389@https://legacy.forums.gravityhelp.com/ <p>The prepare_value method in forms_model.php uses strip_tags() on fields that aren't "whitelisted" for HTML content. As a result, if someone submits content with a left angle bracket followed immediately by another character, this is interpreted as a tag and everything from this point is stripped from the input until a right angle bracket is found. There are times when users might use the left bracket followed immediately by another character in a non-code context (such as a "less than" comparison, which brought the issue to our attention). Furthermore, in some contexts (such as a support form) it might be desirable to allow users to submit any tags as non-interpreted text content. In this case, attempting to pass an exhaustive collection of allowed tags to the 'gform_allowable_tags' filter is an awkward and fragile solution.</p> <p>Using an escaping function such as esc_html() or esc_textarea() rather than strip_tags() would sanitize the content while preserving all user input. </p>