Ok, the wiki allows you to use the & style html entinities,
but if you put [code] around them, they will be secured by & amp; and will show up as plain text.
_____________________________
All ampersands should be changed to &
This isn't crucial. Hopefully you're already converting left and right angle brackets to < and > to assure that no HTML can get in.
UBB doesn't convert ampersands either, but it should. It's not a huge security problem. It's just that if you're posting HTML code, and you put something like " in there to illustrate a way HTML can make quotes, then it will actually become a quote when viewed in the wiki.
Btw: Slime, your method get's corrupted once someone else saves over them...
Slime: does it? I was under the impression that most browsers converted the entities to what they meant even if they appeared in a text area, so that it would convert back for the person to edit, but then the script would re-convert them to &s.
