Home

db_escape_string

Definition

db_escape_string($text)
includes/database.mysqli.inc, line 380

Description

Prepare user input for use in a database query, preventing SQL injection attacks.

Related topics

Namesort iconDescription
Database abstraction layerAllow the use of different database servers using the same code base.

Code

<?php
function db_escape_string($text) {
  global $active_db;
  return mysqli_real_escape_string($active_db, $text);
}
?>
 
 

Drupal is a registered trademark of Dries Buytaert.