mysql escape
#1

Hi,

Can i escape string like this:

Код:
new GlbStr[ 128 ];
mysql_real_escape_string(GlbStr,GlbStr);
Reply
#2

And too i notice when i'am use %e in query it means escaping but not need use mysql_real_escape_string escape better than this function, because when i use %s, i get syntax errors, when i change to %e then no syntax error never been. Maybe there is update for mysql_real_escape_string ? because using %e in large queries it'is not working.
Reply
#3

You're not supposed to escape the whole query string if you're doing so. You're supposed to escape user input strings only to prevent injections. Then, format a string with your query and escaped user input string to your liking.
Reply


Forum Jump:


Users browsing this thread: 3 Guest(s)