Pass the string into json_encode to properly escape it. If you’re outputting to an HTML document, make sure to pass JSON_HEX_TAG as part of the options, to escape < and > and prevent a malicious user from ending your </script> tags early and introducing an XSS exploit.
More Related Contents:
- How to inject javascript code that uses php variables into php page
- Is the following code valid? [closed]
- Form inside of $.load not posting correctly
- How to access PHP variables in JavaScript or jQuery rather than [duplicate]
- How to get the jQuery $.ajax error response text?
- Passing JavaScript array to PHP through jQuery $.ajax
- Send array with Ajax to PHP script
- How to execute ajax function onbeforeunload?
- Creating jQuery AJAX requests to a PHP function
- Change DIV content using ajax, php and jQuery
- jQuery AJAX form using mail() PHP script sends email, but POST data from HTML form is undefined
- How to load PHP file into DIV by jQuery?
- jQuery Mobile: How to correctly submit form data
- Passing Javascript Variable to PHP using Ajax
- How to access PHP session variables from jQuery function in a .js file?
- How to pass a Javascript Array via JQuery Post so that all its contents are accessible via the PHP $_POST array?
- Show/hide fields depending on select value
- How to pass an array using PHP & Ajax to Javascript?
- Jquery: Running AJAX locally without a webserver
- How to add anchor tag to a URL from text input
- Detect if Android app has been installed on the device using a mobile web page – PHP and JS
- Multiple javascript/css files: best practices?
- How can I pass variables from JavaScript to PHP?
- Cross Domain Ajax Request with JQuery/PHP
- How to get exact browser name and version?
- Removing black borders 4:3 on youtube thumbnails
- Sending/Displaying a base64 encoded Image
- show progressbar while loading pages using jquery ajax in single page website
- Run php function inside jQuery click
- jQuery Multiple Forms Submit