problems with wildcard characters using mysql_query() in PHP

dhanya_kr

hi all,

   We are using addslashes() before inserting data into mysql. Now, we face some problems while searching(selecting) particular data which contains slashes(as a result of addslashes..) by using LIKE statement.  To compare such data we need to apply addslashes several times to our query data and it creates lot of problems to the further operations..

Have anyone faced such problems, or anybody know the solution for that please help out..

thanks
bye
dhanya

bpat1434

Try using [man]mysql_real_escape_string/man instead of addslashes.

mjax

Well, actually mysql_real_escape_string() is not that different from addslashes(). The major difference is that the former takes the current characterset into account.

It sounds to me you are applying addslashes() or mysql_real_escape_string() too often to the data you are storing into the DB. If magic_quotes are enabled in PHP and you also apply addslashes to GET or POST data before storing it into the database, you are applying it once too often.