🔣HTML Entity Encoder / Decoder
Convert special characters like &, <, >, ", ' to HTML entities (&, <, >) and back. Numeric entities for Korean and emoji are also supported. Useful for safely displaying code samples on blogs, XSS prevention, writing HTML emails, and validating sitemaps and RSS feeds.
How to use
- 1Enter text and pick the direction.
- 2Copy the result.
FAQ
Why use HTML entities?+
It's the safe way to display characters that would otherwise break HTML (< > & etc.).
Named vs numeric entities?+
You can use named (&) or numeric (&) — the result is the same character.
Do Korean characters have entities?+
Korean uses only numeric entities (e.g., 가 = '가'). Named entities exist only for English special characters.
Is this enough for XSS defense?+
A good start, but not complete. Different contexts (HTML/JS/CSS/URL) need different encoding, so use a security library like DOMPurify.
Why are entities so common in HTML email?+
Email clients handle encoding differently, so converting all special characters to entities in advance is a safety practice.
Why does decoded text look broken?+
Could be double-encoded (entities encoded twice) or invalid entity numbers.