mysql_escape_string

Question

ahmad.albab.87 0 Newbie Poster

11 Years Ago

hi, seems mysql_escape_string was deprecated (http://php.net/manual/en/function.mysql-escape-string.php)

is there any alternative method?
hope php developers can share with me.

tq

mysql php

4 Contributors
4 Replies
249 Views
18 Hours Discussion Span
Latest Post 11 Years Ago Latest Post by ahmad.albab.87

pritaeas 2,194 ¯\_(ツ)_/¯

11 Years Ago

Switch to MySQLi or PDO and use bound values.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

NardCake 30 Posting Pro in Training · Answer 1 · 2013-08-08T22:22:56+00:00

For MySQLi you could use

mysqli_real_escape_string($string); // For procedural style

IIM 163 Master Poster · Answer 2 · 2013-08-09T03:56:33+00:00

It's already mentioned in the link you have provided

Warning
This extension is deprecated as of PHP 5.5.0, and will be removed in the future. Instead, the MySQLi or PDO_MySQL extension should be used. See also MySQL: choosing an API guide and related FAQ for more information. Alternatives to this function include:

mysqli_escape_string()
PDO::quote()

Also,
From http://www.php.net/manual/en/function.mysqli-escape-string.php

mysqli_escape_string — Alias of mysqli_real_escape_string()

So both are same.

ahmad.albab.87 0 Newbie Poster · Answer 3 · 2013-08-09T16:24:45+00:00

ahmad.albab.87 0 Newbie Poster

11 Years Ago

tq guys...