Just recently working on one of the websites i have, found one issue:
People were submitting complete iframe tag or complete embed tag inside the table column including the url to run the video..
How can i remove the html around it or santitize it to just keep the url inside intact and add that inside the table column and ignore other html elements
like an example here
<iframe width="420" height="345"
in the above cases, just remove the html tags and keep the src to insert into the table column,
well it is not happening everytime, couple of users doing this, so also wanna have check if that in form entry, the iframe or embed source is found, then continue..