From: "matthew perry" <[EMAIL PROTECTED]>
> Actually I think the problem is before you can use either addslashes or
> mysql_escape_string() functions. The value with " or ' never reaches
> the database. I think I need a way to ignore quotes for input values in
> HTML.
>
> Say I have this:
>
> A
Filip de Waard wrote:
On Mar 22, 2004, at 12:17 PM, Jimmy Brock wrote:
Matt, love your show!
Use the addslahses function to escape ' " \ characters. See
http://php.net/addslashes for details.
Actually, you shouldn't use addslashes, but a database specific
function like mysql_escape_string().
