PHP Escaping double Quote on echo with onclick
Question
Please notice the addslashes($model->subject) part in the code below. If the subject contains single quote, it works fine but if it has double quote, javascript generates error and treats that the onclick method ends on the double quote character. How to solve that error?
$string.=" <a href='#' class='' data-toggle='modal' "
. "onclick=\"to_edit('" . $model->id . "','" . $model->doc_type_level_1 . "','" . $model->doc_type_level_2 . "','" . $model->doc_type_level_3 . "','" . addslashes($model->subject) . "','" . $model->date . "',"
. "'" . $model->date_release . "','" . $model->is_confidential . "'"
. ")\" "
. "data-target='#modal_doc' ><span class='fa fa-pencil'></span></a>";
1 answers
solution1
0 2017-07-04 06:18:40
您应该使用htmlspecialchars转换这些实体,并使用以下代码:
htmlspecialchars($model->subject, ENT_QUOTES);
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Escaping double quotes around argument of onClick in single quote string
Escaping quote in JavaScript and PHP
Double quote escaping with Javascript function
Double quote escaping for valid JSON
Escaping single quote in php laravel
Escaping the double quote that is in the attribute of an HTML tag
Escaping double-quote in JSON Object
javascript regex for escaping comma and double quote
Javascript/Jquery quote and double quotes escaping
JavaScript Echo Var Within Double Quote
Related Tags