Htmlentities vs addslashes vs mysqli_real_escape_string

I\'ve been doing some read开发者_如何学运维ing on securing PHP applications, and it seems to me that mysqli_real_escape_string is the correct function to use when inserting data into MySQL tables beca