I have my website set up so that everyone who creates an account can post from the front-end. However, after I did some testing I found out that they can add whatever HTML they like into the articles. Thus allowing great security threats.
How do I disable the HTML that is posted by using the front-end editor?
Is it possible to allow a few tags to still be used? For example <b></b> <i></i> etc.
- The topic ‘Disable HTML from the front-end posting’ is closed to new replies.