use
mysql_real_escape_string($_POST['field'] IN the query
use addslashes
use htmlspecialentities
use str_replace to switch it to an ascii equivalent
hth
bastien
From: "Stephen Smith" <[EMAIL PROTECTED]>
To:
Subject: [PHP-DB] Using apostrophe's within a text field
Date: Wed, 28 Mar 2007 00:1
There is that mysql function that is meant for prevention of sql injection
when a single quote or so is entered sql starts acting up. because the
sql syntax is not correct anymore. then your sql functions start acting
up and you get to see all those informative msgs
Turning a ' into a '' or a
Stephen Smith wrote:
OK guys, here is my delima, which is probably very easy to solve, but I can't seem to find it. I
am trying to get form fields to accept apostrophes within the input and stop crashing on me. I'm
writing forms into a mysql database and everything works great unless the user
