Parameter: |
Description: |
Default: |
"string" |
String to encode |
required (can be empty) |
type="safe" |
Encode special characters into HTML entities to avoid XSS exploits: "<" , ">" , "%" , single quote (' ) and double quote (" ) |
type="url" |
type="entity" |
Encode special characters into HTML entities, like a double quote into " . Does not encode \n or \r . |
type="url" |
type="html" |
As type="entity" except it also encodes \n and \r |
type="url" |
type="quotes" |
Escape double quotes with backslashes (\" ), does not change other characters |
type="url" |
type="url" |
Encode special characters for URL parameter use, like a double quote into %22 |
(this is the default) |
- Example: `%ENCODE{"spaced name"}%` expands to `spaced%20name`
- **_%X% Notes:_**
- Values of HTML input fields must be entity encoded.%BR% Example: `