i've been 'messing' around with several functions (htmlsspecialchars, strip_tags,...) but can not get to work as it should...
if a user enters html tags, e.g.
<input type="text" value="some value" name="somename">
then presses submit, i want this text to be added to the database,
and when it is viewed again,
it either shows a real textbox (NOT good) or it shows nothing at all (even worse), depending on the functions i use.
also, when a user enters a url or an email address, can this be show as a clickable url or email address?
i defenitly need some good advice on all procautions to write to a db, and to retrieve the data again.
i also use nl2br to cleanup the /n's into <br> tags, only when retrieving data.
300 for the one who can make this clear so i can get this into my head...