Escape string with PHP

Need professional help? Why not post a job ? It's free and fast.

get the feedDo you like our posts? Wanna stay informed and be the first to know when we publish new content?
subscribe to our newsletterWeekly newsletters with the best websites organized by categories and other news.

A function which will escape a given string and make it "safe" if I may say so. It's good to always escape a string especially when you're using them into your SQL statements. The function:

<?php
function escape_string($str) {
	if ($str !== null) {
		$str = str_replace(array('\\','\''),array('\\\\','\\\''),$str);
		$str = "'".$str."'";
	} else {
		$str = "null";
	}
	return $str;
}
?>

Usage:

<?php
echo escape_string("asdasdlkajsdas dasldkjasd'a sdasd'as ''asd''as'd' as'd'asdasdkajsd");
?>

...this will output something like this: 'asdasdlkajsdas dasldkjasd\'a sdasd\'as \'\'asd\'\'as\'d\' as\'d\'asdasdkajsd'

More details & rating

Escape string with PHP

Added by roScripts on April-18-2007, 3:53 pm

A function which will escape a given string and make it "safe" if I may say so.

0 comments Bury

BookmarkCategory: PHP » Resources » Functions » Security

Comments

For coding help and further support please use the forum.

This posting has no comments.

Add comment

Escape string with PHP

More details & rating

Related articles (53)

Comments

→ LATEST NEWS & ARTICLES

→ we recommend