1. 论坛系统升级为Xenforo,欢迎大家测试!
    Dismiss Notice

HTMLEncode什么意思?

Discussion in '前端开发' started by 端峰, Apr 17, 2006.

  1. 端峰

    端峰 New Member

    Joined:
    Apr 10, 2006
    Messages:
    55
    Likes Received:
    0
    我看到很多地方都有这个HTMLEncode
    起到什么作用呢
     
    #1 端峰, Apr 17, 2006
  2. 不学无术

    不学无术 Ulysses 的元神

    Joined:
    Aug 31, 2005
    Messages:
    16,714
    Likes Received:
    39
    将输入的内容中的 HTML 标记编码,从而在输出的时候不使其输出 HTML ,避免破坏页面内容或留下安全隐患。
     
    #2 不学无术, Apr 17, 2006
  3. 端峰

    端峰 New Member

    Joined:
    Apr 10, 2006
    Messages:
    55
    Likes Received:
    0
    我一直都不用他呀,怎么不见页面破坏呢?
     
    #3 端峰, Apr 18, 2006
  4. 风狼

    风狼 New Member

    Joined:
    Oct 1, 2005
    Messages:
    7,452
    Likes Received:
    25
    那要看你进行了别的处理没有呀。比如说textarea文本框,处理内容里的空格还有回车等东东呀。一般现在的在线编辑器都内嵌了处理,所以不需要。
    再一个。不对代码进行编辑的很可能让别人执行一些入侵命令。SQL注入漏洞就是没对页面的代码进行处理才出现的。
     
    #4 风狼, Apr 18, 2006
  5. 直觉

    直觉 New Member

    Joined:
    Apr 16, 2006
    Messages:
    19
    Likes Received:
    0
    在处理文字录入的时候

    HTMLENCODE还真不能忽视
     
    #5 直觉, Apr 18, 2006
(You must log in or sign up to post here.)
Toggle Width
Language
English (US)