(PHP 4 >= 4.3.0, PHP 5 <= 5.0.5, PECL dbx >= 1.1.0)
Escape a string so it can safely be used in an sql-statement
string dbx_escape_string ( object $link_identifier, string $text )
Escape the given string so that it can safely be used in an sql-statement.
Parameters:
link_identifier
The DBX link object returned by dbx_connect()
text
The string to escape.
Returns:
Returns the text, escaped where necessary (such as quotes, backslashes etc). On error, NULL
is returned.
Examples:
dbx_escape_string() example
<?php $link = dbx_connect(DBX_MYSQL, "localhost", "db", "username", "password") or die("Could not connect"); $text = dbx_escape_string($link, "It\'s quoted and backslashed (\\)."); $result = dbx_query($link, "insert into tbl (txt) values ('" . $text . "')"); if ($result == 0) { echo dbx_error($link); } dbx_close($link); ?>
See also:
Please login to continue.