eregi_replace allowing the character '

johnskywalker99

Hello people
I've got a form that people can add text to a database from. Inbetween this form and input into the database I do an ereg_replace on the users input and squash php, javascript and a couple of other things. As the text will contain various characters like ' " , . I want to allow these, but the ereg_replace I currently have squashes any entry with the ' character. Can someone please put me out of my misery and show me the correct syntax within my code, to allow it:

eregi_replace("<[[:space:]]([^>])[[:space:]]>","<\1>",$str);
$str = eregi_replace("<a([^>])href=\"?([^{])\"?([^>])>","<a} href=\"\2\">", $str);

As far as I can understand it should allow it because it isn't in the code above? is this correct, or is sleep depravity affecting my judgment?

Cheers Ladies and Gents

john

johnskywalker99

Hello
couldn't come up with the correct syntax for my script so I've gone for the softer option of htmlspecailchars()...thanks for reading

Cheers john

theeper

You could use addslashes() to escape the quotes.