mysql query with single quotes in a variable

Posted on 16th Feb 2014 07:03 pm by admin

$sitedetails = "INSERT INTO vars (address, sitename, description, ownername, theme) VALUES ('$url', '$sitename', '$description', '$ownername', '$theme') ";
mysql_query($sitedetails) or die(mysql_error()); // site details in mysql

If say $sitename = "scott nicol's blog"; - this will give me:
Code: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 's blog test', 'scott nicol', 'scott nicol', 'default')' at line 1
I know it's due to the single quite in 'nicol's', how do I keep the quote, but stop this error?

Your Answer:

Login to answer

Other forums

Best way to check for end of a record and send it back to the first record
I'm hoping someone can help me out and explain the best way to accomplish this.

What I'm doin

Else statement screws up all css
Does anyone know what goes wrong in the process with this php code?
This code seems to be causing

webpage with (simple) login & mysql-db
Hi all,

What I was looking for before was a multi-user password manager, web-based! The offer

xml element exists
Code: [Select]<?xml version="1.0"?>
<Addresses>
<

Hashing?
Hi, I was hoping to take a string value then convert it - consistently - across each of our pages in

Simple MySQL query...
Hello,
How could I do a mysql query that does this: SELECT * WHERE date/time < 5minutes ag

values not being entered into table
hi. I;ve created a form, so that when a user enters data into it, it gets added to a table in a data

problem with refreshing
in my site, i have an index page, it has a main div. this main div's content is changing according t

SAP Business Suite
Hi all:

Within the SAP Business Suite solution I would like to ask you the main differenc

Got A Free Server :(
So I was given a free server

http://shopping.yahoo.com/p:Compaq%20ProLiant%201500%20Server:1