Can someone tell me if I should be using the mysql_real_escape_string() function with the MySQL Input statement?
Thanks.
Using mysql_real_escape_string()
Moderator: General Moderators
-
webphotogeek
- Forum Newbie
- Posts: 18
- Joined: Sun Jul 04, 2010 12:11 pm
Re: Using mysql_real_escape_string()
what is 'mysql input statement'?
-
webphotogeek
- Forum Newbie
- Posts: 18
- Joined: Sun Jul 04, 2010 12:11 pm
Re: Using mysql_real_escape_string()
Sorry, I meant the Insert Into statement 
Re: Using mysql_real_escape_string()
Yes, you should, unless you use prepared statements (in which case you shouldn't use *escape() for bound variables).