What have you tried? Something like:
[syntax]$who = mysqli_real_escape_string($row['field2']);[/syntax]
mysqli also has prepared statements.
PDO/mysqli - Escape Characters from Object
Moderator: General Moderators
- Christopher
- Site Administrator
- Posts: 13596
- Joined: Wed Aug 25, 2004 7:54 pm
- Location: New York, NY, US