Why does mysql db stop saving when it detects a single qoute even if I escape them?

by jalicia18

Posted: 14 years ago 3 replies

PROGRAMMING

Code:

$firstname=mysql_real_escape_string("joh'n");
$middlename=mysql_real_escape_string("do'e");
$lastname=mysql_real_escape_string("smit'h");
$home_address=mysql_real_escape_string("addres's") ;

UPDATE `users`
SET
`firstname`='$firstname',`middlename`='$middlename ',`lastname`='$lastname',`home_address`='$home_add ress'
WHERE `user_id`=$userid

What will be saved are:

joh
do
smit
addres

All other characters can be saved but this single quote, can somebody tell me why? Thank you

#detects #escape #mysql #qoute #saving #single #stop

Big Squid 14 years ago

echo out the query.

It'll read

UPDATE 'user' SET 'firstname' = '"joh'...and so on...
- Thanks
{{ DiscussionBoard.errors[6011088].message }}
KirkMcD 14 years ago

Where/how are you checking what has been saved?
- Thanks
{{ DiscussionBoard.errors[6012238].message }}
Earnie Boyd 14 years ago

mysql_real_escape() string is supposed to escape ' with a \ so you should have in $firstname something like "joh\'n" but that may be interfered by the client encoding. You may need to use mysql_client_encoding() before the mysql_real_escape_string() call.

Also make sure magic quotes are off.
- Thanks
Signature
Earnie Boyd
{{ DiscussionBoard.errors[6013481].message }}

Why does mysql db stop saving when it detects a single qoute even if I escape them?

Trending Topics

Hello members

About Me

When was the last time you lost it and laughed uncontrollably??

It's already mid January...

Hi i am joe shaa