Reply to Correct us of mysql_real_escape_string() — PHP Language

Posted by Simon Harris on 03/23/07 20:09

Hi All,

I am using mysql_real_escape_string() on strings before they are entered
into mySQL. This has worked Ok, but when I get the information out,
single/double quotes are preceeded with a \ (Escaped) so,
"Something in quotes" becomes \"something in quotes\"

Do I need to replace \" with " before I print the string to the page? Or am
I missing something? Is there an opposite to mysql_real_escape_string() that
I should call on the string when reading the data from mySQL? Or perhaps I
have totally missed the point of this function? :)

Any help/suggestions muchly appreciated!

Simon.

--
--
* Please reply to group for the benefit of all
* Found the answer to your own question? Post it!
* Get a useful reply to one of your posts?...post an answer to another one
* Search first, post later : http://www.google.co.uk/groups
* Want my email address? Ask me in a post...Cos2MuchSpamMakesUFat!

--------------------------------------------------------------------------------
I am using the free version of SPAMfighter for private users.
It has removed 5818 spam emails to date.
Paying users do not have this message in their emails.
Try SPAMfighter for free now!

[Back to original message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация