How to stop xss payload?

HelloDolly · October 28, 2025, 5:01am

<script>alert(‘XSS’)< /script>

these gets gets stored in database. how to deal with these?

artur · October 30, 2025, 1:24pm

Do a sanatize the content before output

Topic		Replies	Views
Wysiwyg field adds \n newlines to db Support	4	746	January 22, 2019
Show remaining characters (maxlength) Support	0	419	October 15, 2018
Field Types sanitation Support	2	664	April 20, 2019
My php code does not run with the typefiled "code" Support	0	539	June 22, 2018
Images not showing because relative asset path in WYSIWYG content Support	15	4684	October 14, 2019