htmlspecialchars em php
<?php
The htmlspecialchars() function converts special characters to HTML
entities. This means that it will replace HTML characters like < and >
with < and >. This prevents attackers from exploiting the code by
injecting HTML or Javascript code (Cross-site Scripting attacks) in forms.
?>
Rick Astley