Escaping user input
The CodeIgniter security class function,
xss_clean(), attempts to clean input from the
You can apply this to any controller you're creating, or if you've extended using
MY_Controller, you can add it to that if you wish. You can also autoload the security helper by adding it to
$autoload['helper'] = array() in the
/path/to/codeigniter/application/config/autoload.php file. To be explicitly clear, here ...