dfw4ever·hace 5 años·discussYou should sanitize the messages on the server side, not the client. It's possible to inject images/scripts/links on the page.