我有一個簡單的形式與textarea,當提交更新我的數據庫中的行!我希望我的用戶能夠輸入單引號,但由於某種原因沒有得到解析! 這是我有我的分析文件..單引號不解析
<?php
$sql = "SELECT * FROM testimonials WHERE id='$pid'";
$pid = $_POST['pid'];
$testtitle = htmlentities($_POST['ts_tt']);
$testbody = htmlentities($_POST['ts_tb']);
$compowner = htmlentities($_POST['ts_co']);
$ownertitle = htmlentities($_POST['ts_ot']);
$compname = htmlentities($_POST['ts_cn']);
$compwebsite = htmlentities($_POST['ts_cw']);
include_once "../php_includes/db_conx.php";
$sql = "UPDATE testimonials SET testtitle='$testtitle', testbody='$testbody', compowner='$compowner', ownertitle='$ownertitle', compname='$compname', compwebsite='$compwebsite' WHERE id='$pid'";
if (!mysql_query($sql, $connection)){
die('Error: ' . mysql_error());
}
echo 'Testimonial has been Edited successfully. <br /><br /><a href="admin/">Click Here</a>';
exit();
?>
任何想法一切! 非常感謝 - 菲利普
使用'addslashes'。 –
停止使用mysql_函數,使用mysqli的pdo – Tdelang