What characters need to be escaped?

Obviously, less and greater than’s (< >) need to be escaped to prevent
XSS, but what are the other potentially harmful characters?

im curious about this also due to letting users enter some html data,
but not harmful scripts

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs