(PHP 4 >= 4.3.0, PHP 5 <= 5.0.5, PECL dbx >= 1.1.0)
dbx_escape_string — Escape a string so it can safely be used in an sql-statement
$link_identifier
, string $text
)Escape the given string so that it can safely be used in an sql-statement.
Returns the text, escaped where necessary (such as quotes, backslashes
etc). On error, NULL
is returned.
Example #1 dbx_escape_string() example
<?php
$link = dbx_connect(DBX_MYSQL, "localhost", "db", "username", "password")
or die("Could not connect");
$text = dbx_escape_string($link, "It\'s quoted and backslashed (\\).");
$result = dbx_query($link, "insert into tbl (txt) values ('" . $text . "')");
if ($result == 0) {
echo dbx_error($link);
}
dbx_close($link);
?>