Hello,

I'm administering two Jcow communities in the Netherlands. One of of my users warned me that he was able to put in code there which could be used in a malicious way. I think it can be prevented by removing the <em> tag in the config.php file. Or does anybody have any other suggestion?

$config['allowed_html_tags'] = '<ul><li><a><img><br><p><strong><em><span>';