PHP htmlspecialchars is not working

php html-entities
Wasim A. picture Wasim A. · Feb 25, 2011 · Viewed 8.4k times · Source 
<?php  
    $new = htmlspecialchars("<a href='test'>Test</a>", ENT_QUOTES);  
    echo $new;  
?>

output should be 

& lt;a href=& #039;test& #039;&gt;Test& lt;/a& gt;

but output is 

&lt;a href=&#039;test&#039;&gt;Test&lt;/a&gt;

Answer

Peter Carter picture Peter Carter · Feb 25, 2011

Don't worry. htmlspecialchars() is encoding the < and > characters properly. It is just that when you echo the encoded string to your computer screen, your browser helpfully decodes the characters again. If you view the page source you will see the encoded string.

Related questions

html_entity_decode problem in PHP?

I am trying to convert HTML entities from a source string to their literal character equivalent. For example: <?php $string = "Hello &#8211; World"; $converted = html_entity_decode($string); ?> Whilst this rightly converts the entity on screen, when I …

Read More
Encoding issue, coverting &amp; to & for html using php

I have a url in html: <a href="index.php?q=event&amp;id=56&amp;date=128"> I need to turn it into a string exactly as: <a href="index.php?q=event&id=56&…

Read More
URL/HTML Escaping/Encoding

I have always been confused with URL/HTML Encoding/Escaping. I am using PHP, so want to clear somethings up. Can I say that I should always use urlencode: for individual query string parts $url = 'http://test.com?param1=' . …

Read More