How to store in the db an ' caract.

Anon

I tried:

$query_insert = "insert into event(ev_desc) values "."(".$desc_nl2br.")";
$result = odbc_exec($connect, $query_insert);

Still:

SQL error: [Microsoft][ODBC Microsoft Access Driver] Syntax error in string in query expression 'sdf\'sdf)'., SQL state 37000 in SQLExecDirect in C:\Inetpub...php3

jcornett

Change your insert statement to this:

$query_insert = "insert into event(ev_desc) values ('$desc_nl2br')";
$result = odbc_exec($connect, $query_insert);

For the ' character, just use addslashes on any variable you will be using for the insert.

$desc_nl2br = addslashes($desc_nl2br);

This is really a good idea for ANY database insertion and below is a small script that will change all variables received from a form into a database friendly one. Just put it at the top of the script:

Reset($HTTP_POST_VARS);
While(list($key, $val)=each($HTTP_POST_VARS)) {
$$key = addslashes($val);
}

:😛OOF:: All the POST (form) variables have addslashes. 🙂 Hope this helps!

John Cornett

Anon

I just tried the function
$desc_nl2br = addslashes($desc_nl2br);
and recied the same thing with \ before the '
I still have this ' that is taken as an operateur when I store in the database

Syntax error (missing operator) in query expression ''we\\'d like')'., SQL state 37000 in SQLExecDirect in C:\

And same result with
Reset($HTTP_POST_VARS);
While(list($key, $val)=each($HTTP_POST_VARS)) {
$$key = addslashes($val);
}