UnitedForums.co.uk - View Single Post - Apostrophies in text boxes creating mysql error

BrianChesworth · 17th June 2008, 04:06 PM

Cheers Ben,

Its taken me a while to extract some sense from all that was there, but I've found a solution to the problem which works;
eg.

PHP Code:

 
......

<?php $who = (mysql_real_escape_string($_POST['who'])); ?>

 
<?php $sql = mysql_query("INSERT INTO tbl_product 

(who) VALUES ('$who')") or die(mysql_error()); ?>

......

very simplistic, and not particularly secure, but for the moment,more than sufficient.

Many Thanks

Brian

17th June 2008, 04:06 PM	#3 (permalink)
BrianChesworth Registered User Join Date: May 2008 Posts: 5	Apostrophies creating error Cheers Ben, Its taken me a while to extract some sense from all that was there, but I've found a solution to the problem which works; eg. PHP Code: `...... <?php $who = (mysql_real_escape_string($_POST['who'])); ?> <?php $sql = mysql_query("INSERT INTO tbl_product (who) VALUES ('$who')") or die(mysql_error()); ?> ......` very simplistic, and not particularly secure, but for the moment,more than sufficient. Many Thanks Brian