HTML linking, licked it, but now a new question...

cyronuts

So, now, in my site administrator section, I allow the site owner to update pages, and resubmit the html code back for storage in the db column. The new problem...when the information is submitted back, it looks like PHP is adding escape \\'s each time the submit is made, and it is really wacking things out when the html is presented each new time (after an update has been submitted) in the browser . Is there some basic command I am missing? Thanks! Here is the submit code and the form code.

SUBMITTED HTML CODE:

This is my code<BR><BR>

This is my page<BR><BR>

<i>You know nothing<i><BR><BR>

BECOMES:

This is my code<BR><BR>

This is my page<BR><BR>

<i>You know nothing<i><BR><BR>

FORM CODE

// include function files for this application
require_once("sc_fns.php");

$POST['html_page_name'] = addslashes($POST['html_page_name']);

admin_header();

echo "<BR><FONT FACE='ARIAL, HELVETICA' SIZE='2' COLOR='333366'>To update your html page content, change the information below and click submit. <BR>Your html code information will be updated in your cart database<BR>";

db_connct();

mysql_select_db("book_sc");
$query = ("SELECT * FROM html_pages WHERE html_page_name = '$html_page_name'");
$result = mysql_query($query);
$num_results = mysql_num_rows($result);

// echo "<BR>Number of html pages found:".$num_results."";
// This is just for testing purposes

for ($i=0; $i <$num_results; $i++)
{
$row = mysql_fetch_array($result);
}

</TABLE>

<BR>

<TR>

</TR>

</TABLE>

</FORM>

do_html_footer();

frigidman

The evils of "magic_quotes" ... magic my ass! They should have called that configuration setting "screwup_quotes" ... hehehe 😃

If you hate what its doing to your input, you can turn them off in the php.ini (find by 'magic').

If you can't edit your php.ini (or don't want too), you can paste this at the top of your php's to "clean" up the destruction that magic_quotes does.

This is a fully copy/paste of code I have used before... there may be a "shorter" way to do this, but I havnt bothered to find it (since all my servers have magic quotes OFF):

// Fix all incoming data from args for ' " and \\ ... stupid PHP magicquotes bull.
// NOT NEEDED IF php.ini HAS magic_quotes_xxx ALL SET TO 'OFF'
	if (get_magic_quotes_runtime()) {
		reset($HTTP_ENV_VARS);
		while (list($k,$v) = each($HTTP_ENV_VARS)) {
			$HTTP_ENV_VARS[$k] = stripslashes($v);
			$$k = stripslashes($v);
		}
	}
	if (get_magic_quotes_gpc()) {
		reset($HTTP_GET_VARS);
		reset($HTTP_POST_VARS);
		reset($HTTP_COOKIE_VARS);
		while (list($k,$v) = each($HTTP_GET_VARS)) {
			$HTTP_GET_VARS[$k] = stripslashes($v);
			$$k = stripslashes($v);
		}	
		while (list($k,$v) = each($HTTP_POST_VARS)) {
			$HTTP_POST_VARS[$k] = stripslashes($v);
			$$k = stripslashes($v);
		}
		while (list($k,$v) = each($HTTP_COOKIE_VARS)) {
			$HTTP_COOKIE_VARS[$k] = stripslashes($v);
			$$k = stripslashes($v);
		}
	}
	if (get_magic_quotes_runtime()) {
		reset($HTTP_SERVER_VARS);
		while (list($k,$v) = each($HTTP_SERVER_VARS)) {
			$HTTP_SERVER_VARS[$k] = stripslashes($v);
			$$k = stripslashes($v);
		}
	}

Mega

o_0

stick:

set_magic_quotes_runtime(0);

at the top of ur script?