04-06-2009, 05:51 PM
you need to escape sql strings
via php you can do addslashes, or I believe in mysql sql if you add another ' it will allow the single quote,
just going off the top of my head here though, so '' instead of just ', you can do this via str_replace("'", "''", $var);
or $var = addslashes($var);
hopefully that helps
via php you can do addslashes, or I believe in mysql sql if you add another ' it will allow the single quote,
just going off the top of my head here though, so '' instead of just ', you can do this via str_replace("'", "''", $var);
or $var = addslashes($var);
hopefully that helps
______
The PilotsNetwork ( http://www.pilotsnetwork.com )
The PilotsNetwork ( http://www.pilotsnetwork.com )
![[-]](http://www.fspassengers.com/forum/images/collapse.png)