> > Bottom line is that you want to use addslashes() or magic_quotes_gpc() > > on any variable you're going to insert into a query string. If you're > > inserting a variable that should be a number, make sure it is one. > > If I have magic quotes turned on, do I still need to worry about using > addslashes?
No, it's automatic. You may want to program in a check that sees if magic_quotes is on or off, though, and act accordingly. ---John Holmes... -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
