fix up the string before inserting

pgutin

Hey, i know that PHP has a lot of nifty little functions to do just about anything.
Is there a function that will process a string and change it into a format that is acceptable to be inserted into the database?
I mean change the quotes and other specials chars.
Thanks

Anon

mysql_escape_string.

If you go to php.net and look up MySQL you'll get all the mysql functions php has. I'm pretty sure the one above will work though.

Anon

Well, he didnt' actually specify which database product he was using...

addSlashes() will also work for most databases that allow (\') escaping of single quotes. Some database require double quoting of single quotes ('') but addSlashes won't do that for you.

Chris

pgutin

ok, thanks, that's enough to get me started