Blog : PHP addcslashes() Function

PHP addslashes() Function

--------------------------------------------------------------------------------
 Complete PHP String Reference
--------------------------------------------------------------------------------

Definition and Usage
The addslashes() function returns a string with backslashes in front of predefined characters.

The predefined characters  are:

single quote (')
double quote (")
backslash (\)
NULL
Syntax
addslashes(string)  

Parameter Description
string Required. Specifies the string to check


--------------------------------------------------------------------------------

Tips and Notes
Tip: This function can be used to prepare a string for storage in a database and database queries.

Note: PHP runs addslashes() on all GET, POST, and COOKIE data by default. Therefore you should not use addslashes() on strings that have already been escaped, this will cause double escaping. The function get_magic_quotes_gpc() can be used to check this.


--------------------------------------------------------------------------------

Example
In this example we will add backslashes to the predefined characters in a string:

$str = "Who's Kai Jim?";
echo $str . " This is not safe in a database query.
";
echo addslashes($str) . " This is safe in a database query.";
?>  

The output of the code above will be:

Who's Kai Jim? This is not safe in a database query.
Who\'s Kai Jim? This is safe in a database query.