Web Analytics Made Easy - StatCounter addslashes() adding to many slashes ? - CodingForum

Announcement

Collapse
No announcement yet.

addslashes() adding to many slashes ?

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    addslashes() adding to many slashes ?

    how come when i do this:

    $text = "(SELECT * FROM EMP WHERE EMPNAME = 'SMITH')"

    <?php
    if($do == "1")
    {
    echo addslashes($text);
    }
    ?>

    i get this:

    (SELECT * FROM EMP WHERE EMPNAME = \\\'SMITH\\\')
    Tags: None
  • #2
    well you dont ... i.e.

    PHP Code:
    <?
    $text     "(SELECT * FROM EMP WHERE EMPNAME = 'SMITH')" ;
    $do=1;
    if(    $do == "1"

    echo     addslashes($text); 

    ?>
    returns

    (SELECT * FROM EMP WHERE EMPNAME = \\'SMITH\\')


    however if you are sending $text via POST or GET vars then PHP will automagically addslashes for you (which you are then escaping again) , so if thats the case just don't addslashes!
    resistance is...

    MVC is the current buzz in web application architectures. It comes from event-driven desktop application design and doesn't fit into web application design very well. But luckily nobody really knows what MVC means, so we can call our presentation layer separation mechanism MVC and move on. (Rasmus Lerdorf)

    Comment

    • #3
      oh.........duh........ thanks

      Comment

      Previous template Next
      Working...
      X