apostrophe in mysql/php
Question
i'm trying to learn php/mysql.
inserting data into mysql works fine but inserting those with apostrophe is generating an error. i tried using mysql_real_escape_string, yet this doesn't work.
would appreciate any help.
<?php
include 'config.php';
echo "Connected <br />";
$auth = $_POST['author'];
$quo = $_POST['quote'];
$author = mysql_real_escape_string($auth);
$quote = mysql_real_escape_string($quo);
//**************************
//inserting data
$sql="INSERT INTO Quotes (vauthor, cquotes)
VALUES ($author, $quote)";
if (!mysql_query($sql,$conn))
{
die('Error: ' . mysql_error());
}
echo "1 record added";
...
what am i doing wrong?
2 answers
solution1
8 ACCPTED 2010-04-05 14:10:59
Your values are strings, they still need delimiters in the SQL statement, even after you've escaped them.
//inserting data
$sql="INSERT INTO Quotes (vauthor, cquotes)
VALUES ('$author', '$quote')";
solution2
3 2010-04-05 14:12:49
Strings must be wrapped in quotes in SQL:
$sql="INSERT INTO Quotes (vauthor, cquotes)
VALUES ('$author', '$quote')";
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Type of apostrophe in mysql/php
Insert a record with an apostrophe mysql php
Inserting a record with an apostrophe in MySQL and PHP
PHP Mysql Update Serialize Array in escape apostrophe
MySQL/PHP Error: Input a value with an apostrophe ( ' )
php-mysql database apostrophe and comma insertion
String value with an apostrophe in a PHP variable email address, mysql select
Mysql + php with special characters like '(Apostrophe) and " (Quotation mark)
How to prevent apostrophe from being removed PHP MySQL
How to get all data from MySQL with apostrophe in it using PHP
Related Tags