when the parameters passed to the table only son are encoded with Htmlspecialchars for special characters (&, ', ",<,>) (due to the need to insert database security filtering), the following problems occur.
If a user uploads a file with special characters, such as ', the file name is saved to the database and the following issues occur.
If your server-side PHP code uses $_get[' ID ' to get its file name indirectly, then transfer it to the client by name.
?
so the following filename error will appear when you download it.
Personal homepage: https://plus.google.com/+sherlockwang/posts
Original link: http://woqilin.blogspot.com/2012/10/php-htmlspecialchars.html
The above is introduced in PHP with Htmlspecialchars special characters to encode the shortcomings, including the aspects of the content, I hope that the PHP tutorial interested in a friend helpful.