help files
Z505 | PasWiki | FUQ | Search | Main Docs | API Guide



[Overview][Constants][Procedures and functions] Reference for unit 'pwumain' (#powtils_main)

OutFF

Declaration

Source position: pwumain.pas line 135

procedure OutFF(

  const s: String

);

Notes

Same as OutF but the malicious characters such as less than and greater than are filtered to their html entities such as & l t ; and & g t ; first.

FF stands for Format and Filter.

Example

var
  somemacro: string;
begin
  // pretend we have an insecure input with < > symbols
  somemacro:= '<b>blue</b> <javascript><hack>';
  SetWebVar('color', somemacro); 
  OutFF('He looked at the sky, it was {$color}');
  OutFF('That $color is nice.');
end.





lufdoc, Powtils, fpc, freepascal, delphi, kylix, c/c++, mysql, cgi web framework docs, Z505