mysqli real escape string 함수
mysql과 connection할 때 string -> escape string으로 만들어준다
Object-oriented style
public mysqli::real_escape_string(string $string): string
Procedural style
mysqli_real_escape_string(mysqli $mysql, string $string): string
예제
$mysqli = mysqli_connect("localhost", "user", "pw", "table");
$sentence = "Hi. How are you?";
$query = sprintf("INSERT INTO English (sentence) VALUE ('$s')", $sentence);
$result = mysqli_query($mysqli, $query);
$query = sprintf("INSERT INTO English (sentence) VALUE ('$s')", mysqli_real_escape_string($mysql, $sentence));
$result = mysqli_query($mysqli, $query);
참고
- https://www.php.net/manual/en/mysqli.real-escape-string.php
- https://programming119.tistory.com/43