Posted by Simon Harris on 03/23/07 20:09

Hi All,

I am using mysql_real_escape_string() on strings before they are entered
into mySQL. This has worked Ok, but when I get the information out,
single/double quotes are preceeded with a \ (Escaped) so,
"Something in quotes" becomes \"something in quotes\"

Do I need to replace \" with " before I print the string to the page? Or am
I missing something? Is there an opposite to mysql_real_escape_string() that
I should call on the string when reading the data from mySQL? Or perhaps I
have totally missed the point of this function? :)

Any help/suggestions muchly appreciated!

Simon.

--
--
* Please reply to group for the benefit of all
* Found the answer to your own question? Post it!
* Get a useful reply to one of your posts?...post an answer to another one
* Search first, post later : http://www.google.co.uk/groups
* Want my email address? Ask me in a post...Cos2MuchSpamMakesUFat!

--------------------------------------------------------------------------------
I am using the free version of SPAMfighter for private users.
It has removed 5818 spam emails to date.
Paying users do not have this message in their emails.
Try SPAMfighter for free now!

• Next in forum: Re: Correct us of mysql_real_escape_string()
• Prev in forum: PHP files load as text in browser?
• Thread view: Correct us of mysql_real_escape_string()

[Reply to this message]