i want to protect my website form xss, and i want to assure that all my data are correct and consistent, so i don\'t want to allow to add any scripts to my db, that\'s because m
Use some Filter to sanitize HTTP request data.
You may go for jsoup, it is very handy:
String unsafe = "Link"; String safe = Jsoup.clean(unsafe, Whitelist.basic()); // now: Link
Link
Ref: http://jsoup.org/cookbook/cleaning-html/whitelist-sanitizer