如何使用 php & mysql 成功转义撇号
How can I successfully escape apostrophe using php & mysql
我知道这个问题已经被问过很多次了,但我还是很困惑。
我显然遗漏了一些东西,但我一直无法弄清楚如何在从 php 发送 mysql 查询时成功转义撇号。当我阅读的所有内容都说应该时,为什么这不起作用。
<?php
$title = "havin' fun";
$con=mysqli_connect($server,$username,$password,$database);
if (mysqli_connect_errno())
{
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
$title = mysqli_real_escape_string($title);
$result = mysqli_query($con,"SELECT id,artist,title FROM songs WHERE title = '$title'");
if($result) {
while($row = mysqli_fetch_assoc($result)) {
$id = $row['id'];
$artist = $row['artist'];
$title = $row['title'];
echo $id.' - '.$artist.' - '.$title.'<br>';
}
}else echo 'No Results';
mysqli_close($mysqli);
?>
$title = mysqli_real_escape_string($title);// add another parameter for connection
例如:
$title = mysqli_real_escape_string($conn, $title)
我知道这个问题已经被问过很多次了,但我还是很困惑。 我显然遗漏了一些东西,但我一直无法弄清楚如何在从 php 发送 mysql 查询时成功转义撇号。当我阅读的所有内容都说应该时,为什么这不起作用。
<?php
$title = "havin' fun";
$con=mysqli_connect($server,$username,$password,$database);
if (mysqli_connect_errno())
{
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
$title = mysqli_real_escape_string($title);
$result = mysqli_query($con,"SELECT id,artist,title FROM songs WHERE title = '$title'");
if($result) {
while($row = mysqli_fetch_assoc($result)) {
$id = $row['id'];
$artist = $row['artist'];
$title = $row['title'];
echo $id.' - '.$artist.' - '.$title.'<br>';
}
}else echo 'No Results';
mysqli_close($mysqli);
?>
$title = mysqli_real_escape_string($title);// add another parameter for connection
例如:
$title = mysqli_real_escape_string($conn, $title)