Thank you John.
Currently i am using PEAR DB abstration layer. Which
function should i use to escape the ' character? There
are couple of functions in the PEAR DB documentation
so i don't know which one should i use.
Hardik
--- John W. Holmes [EMAIL PROTECTED] wrote:
Richard Davey wrote:
From: Hardik Doshi [EMAIL PROTECTED]
Currently i am using PEAR DB abstration layer. Which
function should i use to escape the ' character? There
are couple of functions in the PEAR DB documentation
so i don't know which one should i use.
I don't use PEAR DB, but it looks like quoteSmart() is
John W. Holmes wrote:
From: Hardik Doshi [EMAIL PROTECTED]
Currently i am using PEAR DB abstration layer. Which
function should i use to escape the ' character? There
are couple of functions in the PEAR DB documentation
so i don't know which one should i use.
I don't use PEAR DB, but it looks
Hi,
I just finished reading Chris Shiflett's article in this months php|a
about SQL injection and have a question I can't seem to find answered
anywhere:
Does mysql_real_escape_string (or mysql_escape_string) do anything
extra that addslashes() doesn't? In the examples in the manual it is
just
Richard Davey wrote:
Does mysql_real_escape_string (or mysql_escape_string) do anything
extra that addslashes() doesn't? In the examples in the manual it is
just used to escape the ' character, but that is exactly what
addslashes() will do anyway.
real_escape_string() takes the current character
5 matches
Mail list logo
