开发者

mysql_real_escape_string is not placing escape characters

问答 作者:

Correct my if I'm wrong, but I thought mysql_real_escape_string was supposed to place escape characters in front of character like (') and ("). The simple setup that I am using is below. I was expecting to see the new record created with backslashes before the above mentioned characters 开发者_运维百科when viewed in phpMyAdmin but the escape characters are not present. 

$text           = mysql_real_escape_string($_POST['text']);
$detailedText           = mysql_real_escape_string($_POST['detailedText']);
$type           = mysql_real_escape_string($_POST['type']);
$image          = mysql_real_escape_string($_POST['image']);
?>
<script> alert("<?php echo $text ?>");</script>

<?php
    $result = mysql_query(
        "INSERT INTO nodes (text, detailedText, type, image) 
        VALUES ('". $text . "','" . $detailedText . "','" . $type . "','" . $image . "')");  
    mysql_close($conn);
?>

with mysql_real_escape_string Those escape character are not stored into database

继续阅读:mysql-real-escape-stringphp

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9