MYSQL_ESCAPE_STRING(3) 1 MYSQL_ESCAPE_STRING(3)
mysql_escape_string - Escapes a string for use in a mysql_query
SYNOPSIS
Warning
This function was deprecated in PHP 4.3.0, and will be removed in the future, along with the entirety of the original MySQL exten-
sion. Instead, the MySQLi or PDO_MySQL extension should be used. See also MySQL: choosing an API guide and related FAQ for more
information. Alternatives to this function include:
omysqli_escape_string(3)
o PDO::quote
string mysql_escape_string (string $unescaped_string)
DESCRIPTION
This function will escape the $unescaped_string, so that it is safe to place it in a mysql_query(3). This function is deprecated.
This function is identical to mysql_real_escape_string(3) except that mysql_real_escape_string(3) takes a connection handler and escapes
the string according to the current character set. mysql_escape_string(3) does not take a connection argument and does not respect the cur-
rent charset setting.
o $unescaped_string
- The string that is to be escaped.
Returns the escaped string.
+--------+---------------------------------------------------+
|Version | |
| | |
| | Description |
| | |
+--------+---------------------------------------------------+
| 5.3.0 | |
| | |
| | This function now throws an E_DEPRECATED notice. |
| | |
| 4.3.0 | |
| | |
| | This function became deprecated, do not use this |
| | function. Instead, use |
| | mysql_real_escape_string(3). |
| | |
+--------+---------------------------------------------------+
Example #1
mysql_escape_string(3) example
<?php
$item = "Zak's Laptop";
$escaped_item = mysql_escape_string($item);
printf("Escaped string: %s
", $escaped_item);
?>
The above example will output:
Escaped string: Zak's Laptop
Note
mysql_escape_string(3) does not escape % and _.
mysql_real_escape_string(3), addslashes(3), The magic_quotes_gpc directive..
PHP Documentation Group MYSQL_ESCAPE_STRING(3)
