what's the best way to insert something to a field in database without worries the funky characters like single quote, double quotes, & (symbol) because sometime the insert command is break when funky characters is used
htmlspecialchars()
