RobertSmith wrote:I have a form and php mailer, all well except that I get \' when I type ". I solved this by enabling magic_quotes sybase in the php.ini (something bad, I believe) I could get rid of \' but now I have " appearing in places where I should have ' (apostrophe / single quotes)
I suggest that you turn off magic_quotes_gpc, magic_quotes_runtime and magic_quotes_sybase.
Check the PHP code to see if it uses stripslashes(). If so, remove the use of stripslashes(). Check the PHP code to see if it uses addslashes() to escape string input to be used in SQL statements. If so, replace those uses of addslashes() with an appropriate escaping mechanism, e.g., prepared statements or say, mysql_real_escape_string().
Read the PHP manual on PHP and HTML and check if the code is missing anything in that area.
mdinnocenzo wrote:variables are expaned when you use ' instead of "
Actually, variable expansion/interpolation happens with variables embedded in double quoted strings, not single quoted strings.
