On Wed, August 1, 2007 3:27 pm, Jay Blanchard wrote:
> [snip]
>
> $first = "'".addslashes($_POST['firstname'])."'";
> $last = "'".addslashes($_POST['lastname'])."'";
> $email = "'".addslashes($_POST['email'])."'";
> $address = "'".addslashes($_POST['address'])."'";
> $city
CK wrote:
Hi,
Engaged in "cleanup" project, attempting to understand the uncommented
decisions of predecessors. Inserting the following contact form values
into a DB:
$first = "'".addslashes($_POST['firstname'])."'";
$last = "'".addslashes($_POST['lastname'])."'";
$email = "'"
On Wed, 2007-08-01 at 13:20 -0700, CK wrote:
> Hi,
>
> Engaged in "cleanup" project, attempting to understand the
> uncommented decisions of predecessors. Inserting the following
> contact form values into a DB:
>
>
> $first = "'".addslashes($_POST['firstname'])."'";
> $last = "'
[snip]
$first = "'".addslashes($_POST['firstname'])."'";
$last = "'".addslashes($_POST['lastname'])."'";
$email = "'".addslashes($_POST['email'])."'";
$address = "'".addslashes($_POST['address'])."'";
$city = "'".addslashes($_POST['city'])."'";
$state = "'".addslashes
Jeff, here's what I do:
1. set magic_quotes_gpc On in php.ini
* this will automatically quote all GET, POST, and COOKIE
variables - read up on magic_quotes_gpc.
2. at the top of each script, stripslashes all the COOKIE, GET,
and POST variables, since they will have been
This seems to be more of a HTML problem.
Form fields simply canĀ“t print out ". You need to change the " to " in
order for it to appear.
This can be done using the function htmlspecialchars():
http://www.php.net/manual/en/function.htmlspecialchars.php
In your case:
">
You can test these two thing
6 matches
Mail list logo
