HTML Escape / Unescape
Convert text to/from safe HTML entities.
What it does
Escapes characters like <, >, &, and quotes into their HTML entity equivalents (e.g. <) so text can be safely embedded inside HTML, or converts HTML entities back into plain text.
FAQ
Rendering un-escaped user input as HTML can lead to XSS (cross-site scripting) vulnerabilities. Escaping ensures special characters display as text instead of being interpreted as markup.