nathanblogs Posted November 8, 2007 Share Posted November 8, 2007 Hey I am having trouble matching a field that contains \'. For example say the companies table there was a value of "exam\'ple" as the company_name. If I use the following: $data[0] = "exam\'ple"; $qry = 'SELECT * FROM companies WHERE company_name LIKE "' . $data[0] .'"'; then run the query it will return an empty set result, even though they are exactly the same. I have tried using '' instead of "" but occur the same problem. Link to comment https://forums.phpfreaks.com/topic/76471-solved-query-error/ Share on other sites More sharing options...
trq Posted November 8, 2007 Share Posted November 8, 2007 Do you actually have the slashes stored within your database? You shouldn't. Link to comment https://forums.phpfreaks.com/topic/76471-solved-query-error/#findComment-387302 Share on other sites More sharing options...
nathanblogs Posted November 8, 2007 Author Share Posted November 8, 2007 Yes, someone else put them there :/ Link to comment https://forums.phpfreaks.com/topic/76471-solved-query-error/#findComment-387304 Share on other sites More sharing options...
nathanblogs Posted November 8, 2007 Author Share Posted November 8, 2007 you need to escape the characters to do so i made a regex to replace \' with \\\\' $data[0] = ereg_replace("\'","\\\\\'",$data[0]); the reason there is slashes there in the first place is to stop sql injection. edit: missed a \ Link to comment https://forums.phpfreaks.com/topic/76471-solved-query-error/#findComment-387325 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.