Since this was posted in php.general and php.db, I only ended up correcting
myself to the orginal poster and to php.general.

$table= 'elements';
$Name = mysql_escape_string($_POST['elementName']);
$sql = "INSERT INTO $table SET Name= '$Name'";

>> waste of variable space, and makes what you are doing less readable

I disagree, but that is ok, that is allowed =)

Jon Kriek

PHP Database Mailing List (
To unsubscribe, visit:

Reply via email to