5 Oct
2015
5 Oct
'15
6:22 a.m.
I have an Ajax call like : $( "#City" ).selectmenu({ select: function( event, ui ) { $.ajax({ url: '/cities', type: "POST", data: {'City':$("#City" ).val()}}).success(function(data){ $("#display").html(data);}); }, }); does the default JSON serializer escape the data to prevent XSS, or should I escape it manually?