koalabear

sorry, error code fits to an other plugin.
Please delete this thread.

it should be
echo '<input type="text" class="subtitle" name="subtitle" value="'.htmlspecialchars($sub).'" id="the_subtitle" />';

[Moderator Note: Please post code & markup between backticks or use the code button. Your posted code may now have been permanently damaged by the forum’s parser.]

But i dont know if output is additionally filtered somewhere else
and how it is written to database.