David Robley wrote:
It seems that mysql_escape_string and mysql_real_escape_string do
undesirable things to EOL markers - data from textareas escaped with either
of those functions is entered, and retrieved with, the characters /r/n
instead of a true line break.
This snippet of code demonstrates th
I'm using Firefox. If I use "mysql_escape_string()" I get a listing of
functions which does include mysql_escape_string and
mysqli_escape_string. It doesn't go straight to mysqli_escape_string,
though.
If you search without parenthesis, it works as expected. You don't
need (aren't supposed to use)
try "mysql_escape_string()". and I'm using Mozilla...
"Justin Patrin" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> On Thu, 1 Jul 2004 09:37:46 -0400, Scott Fletcher <[EMAIL PROTECTED]> wrote:
> >
> > What the hell??? When I enter the "mysql_escape_string" in the "search
for"
On Thu, 1 Jul 2004 09:37:46 -0400, Scott Fletcher <[EMAIL PROTECTED]> wrote:
>
> What the hell??? When I enter the "mysql_escape_string" in the "search for"
> textbox at www.php.net, I get a mysqli_escape_string result. So, the
> question here is, is the website mistaken or is someone made a typ
In that case, I'll have to stick to addslashes() instead of
mysql_real_escape_string() because I'm escaping some of the PHP's post
string in the MySQL's syntax and not yet using the mysql's connection until
some decision making script play a role in it. Blah!!
Thanks,
Scott F.
"Curt Zirzow" <[E
* Thus wrote Scott Fletcher:
> > > I would argue that something like mysql_escape_string() is better than
> > > addslashes(), so I agree with you for the most part anyway. :-) It all
> > > depends on what database is being used and how.
>
> Starting a new topic since the related-topic lists got to
> I was looking at the PHP 4.3 changelog, and it said that
> mysql_escape_string is deprecated. Is this true, and if so, what
should
> I be using instead?
Probably addslashes() or magic_quotes_gpc...
---John W. Holmes...
PHP Architect - A monthly magazine for PHP Professionals. Get your copy
to
> How do I remove the slashes from mysql_escape_string when I pull the
> string back out of the DB and want to display it?
You don't need to. The escaping is only to ensure the query doesn't break.
When
it's in the db and when it's returned, it will not have the slashes.
--
Richard Heyes
"If you
where is the escaping happening first off?
- Original Message -
From: "phantom" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, December 26, 2001 2:02 PM
Subject: [PHP] mysql_escape_string
> How do I remove the slashes from mysql_escape_string when I pull the
> string
9 matches
Mail list logo
