-4
I want to print this code that is stored in the database in my project.
And this is coming up instead of the code
Here is the DAO providing the database information
Here is the CONTROLLER that makes the request
And here’s the EJS which is where the user sees the topic
I’ve researched on the Internet but can’t find anything to help me in this problem.
this code is stored with summernote editor in Mysql I used LONGTEXT to store in mysql
3
According to the documentation of the EJS, the tag you are using (<%=) will print text escaped.
To print text that is not escaped, you must use the tag <%-. Thus:
<%- topico.mensagem %>
Remember that this can have serious security consequences. Rest assured
topico.mensagemis a safe amount before printing it on the screen. You may be opening your site to serious vulnerabilities like Cross-Site Scripting (XSS) if you are not handling the data correctly.
Thank you very much, I hadn’t learned that.
Browser other questions tagged javascript mysql node.js express summernote
You are not signed in. Login or sign up in order to post.
I think it’s worth it [Edit] your question to remove the image code in favor of the same text code, using the proper formatting. Posting code as image is not ideal.
– Luiz Felipe