Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I am having following php string: “Device/ mo\bile’s”;
I want to insert it into db and so before insert i am sanitizing it with addslashes function
and sanitization happens but the string is inserted into the db as “Device/ mobile’s” ie. backlash vanishes.
I want to retain ‘\’ also.
Anybody suggest how can i do that.
Thanks in advance.
Don’t use
addslashesfor escaping SQL. In fact, don’t useaddslashesfor anything. If you are still using the by now deprecated mysql_* functions, usemysql_real_escape_string. If you’re using the newer mysqli_* or PDO extension, use prepared statements. Then all data will be inserted properly. If you use unrelated escaping functions which do not consider to appropriate escaping rules for the language at hand, you won’t get the correct results.