Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
One thing that I hate about documentation at times (when you’re a beginner) is how it doesn’t really describe things in english. Would anyone mind translating this documentation for me? I’d like to know how exactly this makes things harder for a hacker to insert characters.
http://php.net/manual/en/function.mysql-real-escape-string.php
Also, if this is the case, how would a hacker try to insert characters?
The function adds an escape character, the backslash, \, before certain potentially dangerous characters in a string passed in to the function. The characters escaped are
This can help prevent SQL injection attacks which are often performed by using the ‘ character to append malicious code to an SQL query.