I tried typing a classic javascript code inside a textarea,
the one that makes a popup apear to whomever would open the submitted form.
Although the script code was striped out from the textarea, whenever I
clicked on the submitted form to view its contents, the popup would execute. Is there a way to strip out/validate correctly javascript code?
I want this form to be available to everyone and if javascript executes, it's a high security risk
Thank you