PLEASE NOTE: These forums are no longer utilized and are provided as an archive for informational purposes only. All support issues will be handled via email using our support ticket system. For more detailed information on this change, please see this blog post.

HTML Special characters not escaped

Gravity Support Forums » Plugin Support » Gravity Forms

  1. wpengine
    Member

    I've set up a form with multiple Single Line Text fields. Some of these fields are used for inputting passwords, and many of our customers have strong passwords that include various special characters. I've noticed that when the greater than (>) or less than (<) characters are included , they are not properly escaped to the actual HTML coded version of the characters. They should be escaped to

    & g t;
& l t;
(with no spaces)

    This occurs not only when the form is submitted, but also when attempting to edit the form on the Entries page for that form. I have found that if I manually replace them with the HTML code, then they display properly.

    Here is the link, although I don't think it will be needed: https://wpengine.com/migrate/

    Posted 13 years ago on Monday March 19, 2012 | Permalink

  2. Dana Cobb
    Administrator

    Hi, wpengine,

    What is happening is that we strip html out of the input. Because less than and greater than are used for html tags they are being removed and text is being truncated. The team is going to discuss this issue further to see what the best approach is.

    Posted 13 years ago on Tuesday March 27, 2012 | Permalink

This topic has been resolved and has been closed to new replies.