"cfqueryparam": http://livedocs.adobe.com/coldfusion/6.1/htmldocs/tags-b20.htm is your friend.
AJ Dyka wrote: > i All, > > I have a form that can accept HTML formatted content via FCKEditor. > > All integration, database inserts, updates, etc is working fine until > one of the HTML tags that FCKE creates contains a " (double quote), > then mySQL throws an error because the query closes prematurely and > tries to interpret the rest of the string as part of the query. > > My question is: > > How do you format the input string (in my case #FORM.content#) to be > able to remove all of the pesky ", but still have it rendered as > proper HTML wen being displayed later? I have tried the HTMLcodeEdit & > HTMLeditFormat functions but they didn't help? My best guess is > delving into regular expressons for character replacement which would > be new ground for me! > > My UPDATE query is: > > <cfquery datasource="DSN"> > UPDATE news > SET dateTime = '#dateformat(now(), "yyyy-mm-dd HH:mm:ss")#', > postBy = '#session.username#', > subject = '#FORM.subject#', > summary = '#FORM.summary#', > content = '#FORM.content#' > WHERE id = #FORM.id# > </cfquery> > > Software versions are: > > CF MX 7 (patch level unknown) > mySQL 4.1 > FCKEditor 2.4.3 > > Thanks. > > A.J. > > ---------------------------------------------------------------- > This message was sent using IMP, the Internet Messaging Program. > > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "cfaussie" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en -~----------~----~----~----~------~----~------~--~---
