dfw4ever·5 ปีที่แล้ว·discussYou should sanitize the messages on the server side, not the client. It's possible to inject images/scripts/links on the page.