Re: If a field mysql have ', how I can resolve — All PHP

You are here: Re: If a field mysql have ', how I can resolve « All PHP « IT news, forums, messages

Posted by Janwillem Borleffs on 09/28/33 11:58

artev wrote:
> notice, I not want to do this:
> AND text ='".mysql_real_escape_string($text)."'";
>

Some options:

1:-
$text = mysql_real_escape_string($text);
$query = "SELECT ID, text
FROM table
WHERE ID>100
AND text = '$text'";

2:-
$query = sprintf("select .... and text = '%s'",
mysql_real_escape_string($text));

3:-
Using the prepare method of the mysqli interface (PHP 5 only);
http://www.php.net/manual/en/function.mysqli-prepare.php

JW

Navigation:

Next in forum: Re: [Test Needed] PHP [win32] & CLI required for testing.
Prev in forum: [Test Needed] PHP [win32] & CLI required for testing.
Thread view: Re: If a field mysql have ', how I can resolve

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация