[Banditukas]

Hi,

Can i escape string like this:

Код:

new GlbStr[ 128 ];
mysql_real_escape_string(GlbStr,GlbStr);

[Banditukas]

And too i notice when i'am use %e in query it means escaping but not need use mysql_real_escape_string escape better than this function, because when i use %s, i get syntax errors, when i change to %e then no syntax error never been. Maybe there is update for mysql_real_escape_string ? because using %e in large queries it'is not working.

[arad55]

You're not supposed to escape the whole query string if you're doing so. You're supposed to escape user input strings only to prevent injections. Then, format a string with your query and escaped user input string to your liking.