Hi,
Well weirdly not all the quotes were. Basically some software (quite possibly including the blog you're copying from) uses special "stylised quotes" which slope in different directions.
Unfortunately I'm not familiar with your editor and it looks like it's for the Mac so I can't help you specifically but I would guess that there is probably an option to convert to raw text or similar?
Otherwise you may well have to go through changing your quotes over. To be honest once I realised what it was they stood out - you can see in your earlier posts just looking at the include_once the quotes are angled and not just "straight". Likewise with some of the single-quotes.
I would try and see if you can convert or save as plain text (ASCII). These quotes are UNICODE characters (I think, I may just be making that up) so would get converted.
SQL injection is where nasty people can put things directly into your SQL. Most commonly this consists of chaining instructions as MySQL will accept multiple queries in the same line for example:
Code: Select all
<?php
$query = "INSERT INTO sometable(myfield) VALUES(\"".$_REQUEST['user_value'])."\")";
?>
Is fine unless someone inputs:
or similar as the user entry which will cause a problem.
Have a look at the
mysql_real_escape_string function which will escape nasty unwanted characters.
You may also want to perform some other validation/sanitation on the input but generally if it's escaped properly the worst that happens is the query just fails.
Cheers,
Dave.