I have never really found the perfect solution to this annoying question of how to handle single and double quotes entered by a user.
I know how to replace the single quotes to insert the data into a database, but how do you get the information to show up properly in a form when you need to display the submitted data? Specifically if you use double quotes in your HTML form tags to wrap values attributes, how do you display double quotes submitted by the user? It allows cuts the data short as it thinks that the first double quote in the user's data is the end of the string for the value attribute.
You must all know what i mean, right. Have I just been stupid all this time, is there a solution?
I am about to stop using textboxes all together and just use textareas!! but then you have the headache of dealing and validating textbox lengths, etc. AHHHHH!!!
Please help, your insight might just save my sanity!
If you have a solution = 250 pts, I am really looking for some to add to my knowledge on this.