posting prob from html forms to mysql

by **Driver** » Thu Oct 14, 2004 6:28 am

I'm having a problem with a news posting thing I set up. It works perfectly, except when you post news with a single or double quote in it.

I was wondering if anyone knew how to get around this.. its really annoying, cause you can't type things like can't due to the single quote.

Any help would be great!
Thanks

by **Adl** » Thu Oct 14, 2004 11:16 am

str_replace should work, but then you'll also have to make sure that you close the tags...

by **Malcolm** » Thu Oct 14, 2004 1:12 pm

How are you having problems; whats the error?

When trying to enter data into the database does it stop at the first quote?

or

When you're grabbing data from the database do you always see something like this: \" or \' ?

Give an example of the problem, we'll give you better ways to solve it

by **Driver** » Thu Oct 14, 2004 4:10 pm

The prob is that unless you put \' or \" before a quote, then the php script that I wrote doesn't update the database properly, cause it ends at the quote.

I don't know how to tell php to ignore the single or double quote without the slash... or maybe to add the slash so mysql won't mess up ... I'm making this for users who I don't want to have to do much but type...

by **Rasmus Lindström** » Thu Oct 14, 2004 4:54 pm

Post the script that's not working and will be much easier for us to help you.

And welcome to DEVPPL =)

by **Malcolm** » Thu Oct 14, 2004 11:57 pm

Driver wrote:The prob is that unless you put \' or " before a quote, then the php script that I wrote doesn't update the database properly, cause it ends at the quote.

I don't know how to tell php to ignore the single or double quote without the slash... or maybe to add the slash so mysql won't mess up ... I'm making this for users who I don't want to have to do much but type...

Try something like this
**NOTE** People should be doing this whenever they enter _ANYTHING_ into the database thats from user input.

Code: Select all: //where $string is the data to be entered into the database if(get_magic_quotes_gpc()){ $string = stripslashes($string); } $string = mysql_real_escape_string($string);

Now try to enter the variable into the database, you shouldn't have any problems.

by **Driver** » Sat Oct 16, 2004 1:53 am

ok, thanks a ton!

by **Malcolm** » Sat Oct 16, 2004 5:37 am

Don't forget to mark this topic as solved

Topic	Last Post
Best way to get traf..	21/05 - 10:14
Tool to check Keywor..	21/05 - 10:01
What is Alexa.com..	21/05 - 08:40
What is Link juice?..	21/05 - 07:52
Need help with pop u..	21/05 - 00:26
Tutorial Request : O..	20/05 - 14:13
5 Super Advantages o..	20/05 - 09:35
How long should a ti..	20/05 - 09:31
Can't find my site o..	20/05 - 09:30
SEO & Meta tag k..	20/05 - 09:28

Topic	Last Post
What is Link juice?..	21/05 - 07:52
Tool to check Keywor..	21/05 - 10:01
Need help with pop u..	21/05 - 00:26
Tutorial Request : O..	20/05 - 14:13
What is Web Beacon?..	20/05 - 09:00
5 Super Advantages o..	20/05 - 09:35
Large Monthly Payout..	19/05 - 17:07
need help with Radio..	19/05 - 04:08
How I repair a refri..	18/05 - 15:46
Importance of seo in..	17/05 - 10:23

Member	Joined
Theodore Roosevelt	21/05 - 23:17
Elwira Johansson	21/05 - 18:11
Patrick Igwe	21/05 - 17:24
Kwari Yohanna	21/05 - 12:37
Cody Miller	21/05 - 07:33
Gondoolit Awan89	21/05 - 05:41
Cat Devnner	21/05 - 04:44
Elijah Ebomcelroy	21/05 - 00:26
Haritha J	21/05 - 00:24
Callie Anderson	20/05 - 19:54

Member	Points
Rasmus Lindström	18
Andreas Nilsson	7
Alex Thompson	6
J B	4
Barry Victor	3
Covetus Covetus	3
Simon Dirks	3
Pushcheck	2
Kuku Greenbob	2
RBmax RBmax54	2

Login

posting prob from html forms to mysql

posting prob from html forms to mysql

posting prob from html forms to mysql - Sponsored results