Hello, I'm running into a problem with some extra fields associated with my SIM checkout page. I have an additional field and I can't figure how to both sanitize and then replace quotes and special characters. I'm assuming Auth.net does some sanitation to the fields in their own check form, but does it touch extra fields?
Merchant defined fields are echoed back in the same form that they are submitted in. It's possible that, if the fields are not URL encoded, you may see some alteration to the value(s) but other than that they will not be scrubbed with exception to data that is considered to be secure such as credit card numbers, expiration dates and card code values.