cannot use '

Anon

Hello,

When I'm adding to my database, I cannot use the word I'm and hadn't and so on, because the ' it using in the commando:

query_mysql("and something with ' and more");

what can I do with the $text ?
$text = something($text);
before adding, but what?

Hope you understand, Ulrik

Anon

$text = addslashes($text);

Hope that helps:

Chris King

closer

but remember to do:

$text = stripslashes($text);

right after you read the value. otherwise your value will print out:

"and something with \' and more"

Anon

ive found that when inserting ' into access, you have to double it ie: make all ' to ''

-paul
http://xhawk.net

kparker

Actually, the whole point of 'escaping' the quote is for database INSERTs. The database itself won't store the escaped version, but only the literal quote. Thus, when you receive the value from a SELECT, you don't need to do anything special.

In all my time working with PHP, the only need I've had for stripslashes() is when magic quotes are on--a mixed blessing--and data is passed between pages rather than being stored in the database. The perceptive phpbuilder will note that this site has exactly this problem when a posting is rejected due to missing name, etc, and people are constantly where the extra backslashes came from.

Anon

Paul I think yours way to do it is best, because people when still can use \ 🙂

Thanks to all!

Anon

Ulrik:

Please watch out when doing this. When you do an addslashes to a strings it will escape a backslash () to (\) and will be inserted into the database correctly. So watch out if just duplicating the apotrophe, it can still leave holes in your code.

Chris King