nvlbg
Reputation: 341
HTMLPurifier inserts \ before quotes
In the system I'm building I use CKEditor for writing posts. Then, when I send it to PHP I validate the html created from CKEditor with HTMLPurifier. The problem is that the HTMLPurifier adds \ before ". For example, the CKEditor produces:
<span style="font-size:36px;">
And after HTMLPurifier:
<span style=\"font-size:36px;\">
I'm using PHP 5.2. Why does HTMLPurifier adds these backslashes and what must I do to fix it?
Upvotes: 0
Views: 418
Answers (2)
Lekensteyn
Reputation: 66405
It's not HTML purifier that adds the extra slashes, but your PHP configuration. Edit php.ini and disable magic_quotes_gpc.
The linked manual suggests you to add the next setting to php.ini:
magic_quotes_gpc = Off
If you are using Apache and can use .htaccess files, create one with:
php_flag magic_quotes_gpc Off
Upvotes: 4
Rick Kuipers
Reputation: 6617
Use stripslashes() to get rid of them.
$string = '<span style=\"font-size:36px;\">';
echo stripslashes($string); // Output: <span style="font-size:36px;">
Upvotes: 1
Related Questions
- htmlpurifier - How to escape self closing tags?
- How to properly escape HTML editor content corretly?
- How can I prevent CKEditor from enclosing URLs in quotes?
- CKEditor is escaping html elements
- CKEditor outputting text doesn't match input when using htmlspecialchars_decode(stripslashes($variable))
- htmlpurifier removes all the formatting done by CKEDitor
- CKEditor adding backslashes to HTML tags with attributes
- make HTMLPurifier omit double quotes around="attributes"
- How do I stop HTMLpurifier from escaping PHP shorthand syntax examples in markdown?
- Single quotes rejected by html purifier