DB_common::escapeSimple() -- Escapes a string according to the current DBMS's standards
Description
Escape a string according to the current DBMS's standards.
Parameter
- string
$str
the input to be escaped
Return value
string - the escaped string
Note
This function can not be called
statically.
Function available since: Release 1.6.0
Example
Example 33-1. Using escapeSimple() <?php
// Once you have a valid DB object named $db...
$name = "all's well";
$sql = "SELECT * FROM clients WHERE name = '"
. $db->escapeSimple($name) . "'";
$res =& $db->query($sql);
?> |
|