I've done a bit of reading on htmlentities. Its a little confusing.
At present I just have a form that searches the database by the entered keyword.
For example if I do:
I get the following on screen
$message = 'Your search for <strong>'.$orig_keyword.'</strong> found the following <strong>'.$rowcount_array.'</strong> results:<br />';
echo htmlentities($message, ENT_QUOTES);
Obviously I wouldn't want html to be literally displayed on screen, so I'm a little confused at which point in my code (html form, sql and results all on the same page) I need to be using htmlentities?
Your search for <strong>house</strong> found the following <strong>8</strong> results:<br />
I have read several articles online but I'm still not understanding