Code Insertion + Escape Chars
I'm updating my scripts a bit, and I was wondering how I could insert data in a textarea just by clicking a button. For instance add a Url or a smily ... (just like in these forums when posting)
An other question, how do I make sure I don't need to use a to get a ' For instance if I want to add content containing a " ' " I need to write "hello I'm ..."
View Complete Forum Thread with Replies
See Related Forum Messages: Follow the Links Below to View Complete Thread
Stripping Chars Before SQl Insertion
I have a form with an input box that the user puts in a dollar amount. I dont want them to put a dollar sign or anything else apart from the currency amount (1.00, 1,658 etc). How would I achieve this?
Stripping Chars Before SQl Insertion
I have a form with an input box that the user puts in a dollar amount. I dont want them to put a dollar sign or anything else apart from the currency amount (1.00, 1,658 etc) How would I achieve this?
BB Code - Escape A Bracket In BB Code?
Is there a way to escape a "bracket" in BB code? The beginning of a bbcode post I made starts with something in brackets [like this]. This causes a strange thing to happen to the remainder of my post. Removing the brackets makes my post normal. That shows me that I need to escape the brackets. However, a simple backslash does not seem to do the trick i.e. this [wont work] I am not the administrator of the bb forum, just a poster. So I need to know what to do on my end (as opposed to an adiministrator's power to reconfigure, etc.
Do I Need To Escape This Code?
After you all gave me some good advice recently, I'm back for more :o) On my web site, I want to display a 'log out' icon with some text underneath, ("Log out"), which, when clicked, will end a session. This is the simple code I'm using for the icon: <a href="<?php echo $_SERVER['PHP_SELF']; ?>?action=log_out"> <img border="0" src="images/logout.gif" width="74" height="74"><p style="text-align: center"> This all works fine and, when clicked, the session is ended and the user returns to my web site's home page. Now's the complicated, (Well for me, anyway), bit; I only want to show the 'log out' icon when the user is actually logged in. So, I've been using isset to determine the session state: <?php if (isset($_SESSION['user'])) {?> <a href="<?php echo $_SERVER['PHP_SELF']; ?>?action=log_out"> <img border="0" src="images/greenround.PNG" width="74" height="74"><p style="text-align: center"> <?php }?>
Specials Chars Replaced By Strange Chars
i got a small problem in PHP. When i try to get some data from a file (fopen), it replaces special chars by weird chars. Example : Français instead of Français. thème instead of thême...
SQL Insertion Problem
I am have a little problem with inserting some info into my database. What I would like to do is be able to select the last row of my database because my data is sorted by database the most recent date will be at the bottom of my database. This script is being used for uploading files and when the user uploads files the date is stored with it thats why the date is the most recent at the bottom. Anyways I understand that mysql_num_rows($var); will tell me how many rows of data are in my database. I have tried a million times to use a for loop to get the last row of data. There has to be some way to just extract the last row of data from my database I just dont know how.
Date Insertion ?
I am inserting date in a table as following....is it the correct way ? $dt = getdate(); $day = $dt['mday']; $month = $dt['mon']; $year = $dt['year']; $dt = $year."-".$month."-".$day; $query = "insert into Articles(PostedDate) values('".$dt."')"; $result = mysql_query($query,$con);
Problem With Ip Address Insertion
This problem is manifesting it self outside PHP at the level of directly typing commands into the MYSQL application itself. Obviously it is going to have the same effect inside PHP. I need escape characters or something but nothing I have tried works. typing the command INSERT INTO table(ip,commentfield)VALUES ("111.222.333", 'old spammer'); results in only the characters 111 appearing in the ip field . It is defined as a char 16 field.
Multiple Insertion Querry
I have an array of data in PHP. I would like to insert each member of the array into it's own row in SQL. The array is of variable length, so it would have to be dynamic code. How would I go about this? Would I stick the SQL querry generation and actual querry into a while loop? This would generate a lot of traffic between the SQL server and the PHP script. The arrays are each over 1000 members long, however, this is an rare admin script that will be run roughly 4 times a year, so I guess it isn't that bad. If possible however, I would like to do it in one querry. Is that possible? I thought I heard somewhere that it's impossible to run more that one querry at once through PHP as a failsafe for users sticking bad data into forms. (ie, you cant do: "querry1; querry2;", you have to do "querry1;" querry it, then do "querry2;"
Insertion Of Data Not In Order
I have a slight problem with inserting data into MySQL tables with PHP. So far, everything that is entered into my form does get inserted correctly, meaning all data is added successfully to their respective columns. However, sometimes when I insert another set of data, it appears on top of the preceding data. The first column in my table is called 'employid', it set to auto_increment and primary. Code:
String Insertion And Extraction
is there a function to replace a section af a string with another regardless of the values and to do the reverse i.e. $srt1 = "ABCDEFGHIJKLM") $str2 = "XY // insert $str2 in to $str1 [3] and [4] $srt1 = "ABCXYFGHIJKLM") AND $str = $str1 positions [7] and [8] $str = "HI"; I want to do some incripion on text. OR will I have to create something?
After Mysql Insertion Another Row Is Added
on the site i am developing i have noticed after a database insertion is made, mysql insert another row (but only the id increments by 1) if i insert: id---name---age---country 1 ---Graham---28---Scotland right after this will be: 2 ---blank---blank---blank i checked the inserts carefully it all seems fine, then tried LIMIT 1, with the INSERT INTO but that didn't work, any ideas on what this could be?
Getting Primary Key Value Of Last Database Insertion
I have a very simple issue. I have a bunch of data I'm inserting into a database to create an article. When complete, I want to redirect to the article, but I need the node_id. It just so happens that the node_id is the Primary key and is automatically generated by mySQL at insertion time. Is there an easy way to get the value of the Primary key for the most recent insertion?
Mysql Data Insertion
I am using this script to load a file into the webserver, and store the path in the database. That is working fine. However, when I try to upload other information from the same field I keep getting the field name in the data. Code:
Image Upload & MySQL Insertion
I am having a bit of trouble getting my script to work. I am trying to get a file (image) to be uploaded to a specified path and insert the file name, a timestamp, and id into my MySQL database to later pull the files that I uploaded out from the DB and display them on a page. Could someone tell me what I am doing wrong? It displays the image upload form, just as I want it to, but if you submit the form, it just takes you back to it and does nothing. It doesn't give any errors, upload the file, nor does it insert anything into the DB.
Stop Sql Insertion On Every Page Refresh
The page has a form which basically take in a file name, and and upload button does the uploading. the php code at the top of the page takes the file name and insert the name into a database. the problem is: everytime the user presses the refresh button, a new entry is inserted into the database.
Two-Dimensional Array Insertion And Print
1. return results from an Oracle query into an array. there are 3 fields and approx. 2,000 records. 2. insert the results into an array of some type, inside of a loop, obviously. 3. print the results so i can verify the query is working. PHP Code:
Image Insertion And Retrievel Using Mysql
I've managed to get images inserted in mysql and can pull them out for display, but for some reason it looks as if the bottom 4th of the jpg photos do not show. Is there a space limitation for blobs?
Preparing Text For Insertion Into Database
I insert text into a MySQL Database using a TEXT field. PHP syntax is: $query = "INSERT INTO data (text_field) VALUES('$text_field')"; The problem is, when the user has an apostroph (like "friggin' cool") in the text, MySQL misinterprets it, and the query is invalid. Is there a PHP function that formats the that input so it can be entered into the database?
Drag And Drop Insertion In MySql
I'm developing a site in PHP/MySql that requires Ajax for this feature : The user read an article and if ever he likes it he can drag it and drop it into his "basket". Then when he'll consult its account he'll found that article.
Form Calculation Before Database Insertion
My problem is that i want to make a form where will be made calculations and after the calculation are made, the user should press submit and then, all the values from the form should be inseted into a database. My code is writen under these lines, but all I want to do is the value code to be calculated from Nume and Prenume (for example, if the Nume value is 2 and Prenume value is 3, in the form the value of code should be 5. Code=Nume+Prenume, but i don't know how to write to make the calculation in real time. Code:
Drop Down Menus And Mysql Insertion
I'm looking to create drop down boxes for a user to select the date and then have it insert what they select for month, day, year, hour, minutes and insert it into mysql. It needs to be organized in a timestamp like so: 2007-02-28 21:06:40 I've created the drop down boxes and it works pretty well: Code:
Today's Date In Database Insertion
How do I insert today's date in a certain database row without using the date() function for a string? For example, when you use PHPMyAdmin to insert a new table row and there's a column with the type "date", it gives you options such as CURDATE, NOW, etc. How would I use that in a database query?
Insertion Of Data Into MySQL Tables By Date?
My assumption is that when you insert data into a MySQL table, the latest data is put on the bottom, and is thus the farthest from the beginning of any search you'd initiate. I assume the search starts at the top-most row (oldest) and works it's way down. Since I'd like to search the latest data, and pull only about 10 rows of data, the most efficient manner would be to have the tables structured such that the newest content was always on top (a date-wise descendent structure). There must be a way to create a table such that any insertion would be put on top. I know I can ORDER BY date when doing a SELECT command, but that would entail searching the entire data set; isn't there a way to define the table ahead of time such that a date/time column is always ranked in descending order?
Avatar Script Insertion Vulnerability (Security)
Looking at http://secunia.com/advisories/17295/ , it seems possible to embed javascript in images in a special way. So, if a user provides an avatar or an image url like this pointing to an external site, they will be able to hack accounts. Do you know how this can be avoided? And/or, how sites like vbulletin/phpbb/smf type of applications protect users from this?
Preventing Multiple Data Insertion On Page Reload
I am developing a PHP-mysql database. It is noted that when the browser window is refreshed the data is inserted again in the database. unfortunately there is no unique keys that I can use to verify the existance of the data, so as to prevent the multiple insertion. Is there any other way to prevent it otherthan introducing another field for this purpose and verifying its existance?
Generate An Html Form, To Be Submitted For Insertion To A 3rd Table
1. display a form consisting of radio buttons and check boxes. multiple selection of check boxes per radio button basically. I got this part done, it displays the data in the form which is being pulled from two separate tables. 2. Insert for each check box a record into a third table of the check box and radio button. this is what i have thus far and I'm not really sure why it's not working from what i can see step by step it should be inserting the records, these arrays are the most terrible thing i can think of having to do. Code:
Complicated Email Parse Or Text Extraction And Database Insertion
I am trying to strip some data out of numerous emails and place it in my database. I know that this seems as if it has been done before. But, this is a little different. First, the numerous emails all have a set of data that needs to be extracted and inserted into the database. Some of the data in the email is id, name, address, city, state, zip, company, etc. The catch is that the date is formated and presented differently in each email. Take into consideration the following email examples: - excert from email #1 ID:.............. 12345 Name:............ JOHN DOE Address:......... PO BOX 9999 City:............ Somecity State:........... CA Zip Code:........ 90210 ....
Escape Probem
I am having a little trouble copying PHP code into a file, here is an example of what I am trying to do...
Escape A String
If a string contains characters -- and ', how do I escape the string so that I can compare this string to others or store it in database?
Getting Rid Of Escape Characters.
i am sending the contents of an html text area with the name "message" using the mail functions like. mail($email, $subject, $message, "From: someone@somewhere.com Reply-To: someone@somewhere.com X-Mailer: PHP/" . phpversion()); when the user gets the mail all apostrophies (') are escaped like ('). how do i prevent this?
Escape To Unicode?
I've begun dealing with PHP's XML functions (puttup!) I shoudl say- php's DEFAULT XML functions, no extensions. Probably not 5.0. I don't care... The POINt is, they choke on funny characters, even encoded funny characters. You need to use the unicode. (change ñ to ñ). Whatevuh. That's why, why- now ignore that part, because it will distract and proably cause you to misconstrue the thrust of the question to follow: Does PHP have a function that will escape all funny characters in a string (encoded, unencoded, both, either...) to their unicode equivilants? In a string- ignore the XML parts of this question. (I'm looking at pre-proscessing the data coming into forms that will form the offending XML)
Escape Character & And #
Does anyone know the escape character for & and # like in : Update GDO_INFO_ER set V_COMMENTAIRE='B&A' where V_USERMODIFICATION='bilal123' or Update GDO_INFO_ER set V_COMMENTAIRE='B#A' where V_USERMODIFICATION='bilal123' I would like to insert & and # literally in the table.
Escape Charecters
Can anyone tell me ho to get certain charecters to be displayed. When sending email with (') i get () instead. i.e. This dosen't work becomes dosen
Escape Character
I dont know why the browser doesn't present the php string with some escape character like , .... For example: the string "Name Address" should be printed out like Name Address instead it prints out "Name Address".I tried other ones and do not work. Anyone know why?
Characters To Escape?
I am looking to make my own escaping system, although i don't know the major characters to escape? Is there any really bad characters that must at all times be escaped.
How Can I Escape The XML Syntax
i have a textarea where users can input information about themselves. They can even edit the texts (making the texts bold, italic...). It works fine when i try to add the info into the db. But when i try to display the info from the db, it displays some characters like \" whatever. I used stripslashes, but it didn't solve the problem. What do you advise me so that i can handle the XML special characters not to disturb my design??
Escape The Xml?> Characters
This seems to cause a problem as PHP takes the?> to be the end of PHP script. I then get a load of PHP in my XML file that was created. Anyway to escape it? <?php include("DBConnection.php"); // open a file pointer to an RSS file $fp = fopen ("rss.xml", "w"); // Now write the header information fwrite ($fp, "<?xml version=Ƈ.0'?><rss version=ƈ.0'><channel>â€);
How To Escape String For Preg_match?
I have a string equal to 'www/' that I want to use in a preg_match. Php keeps giving me the warning: Warning: preg_match(): Unknown modifier '/' How can I escape the string so the / in www/ is not interpreted in the preg_match ?
Why Is PHP Adding Escape Characters?
I'm making a simple preview function. first page is a text area exactly like the one used to post on this page. Page 2 is a preview. Well, on page 2, it's escaping all the escapable characters for no reason at all. so i type: hello, "person" what is up? I get back this: hello, "person" what is up?
Escape All Posted Variables?
this works well enough when all the elements in $HTTP_POST_VARS are scalars, but it doesn't work so hot if one or more of them is an array: <BLOCKQUOTE><font size="1" face="Verdana,Arial,Helvetica">code:</font><HR><pre> while(list($key,$val)=each($HTTP_POST_VARS)){$$key=htmlspecialchars($val);} [/code] So what I need is an easy way to tell if "$val" is an Array so that I can do something similar to each of its elements in turn.
Php Rawurldecode From Javascripts' Escape()
I'm sending some vars to php from javascript. These vars contain special chars (like "&" ,",")and also turkish characters. Therefore I'm using javascripts escape() function to be able to send them properly. My problem is on the php side. I am using rawurldecode to convert them back. However, Turkish characters like "I" (capital "I" with a dot on top) for example still stay encoded as "%u0130". My page is setup to handle turkish chars and if sent from a database, display properly. I've googled for an answer and cant find anything. I've also tried looking at base64 encoding from javascripts' end, to again decode using base64Decode from php, but nothing seems to work right.
Escape $HTTP_ Vars
whats the best way to escape incoming post/get data Im using psedo code below, PHP Code:
How To Use Escape Characters (particularly #) With $_GET
I don't have a lot of experience using $_GET. I need to know how to pass characters in using the $_GET method. The character I'm having a problem with right now is '#', but I'm sure there are others. Could anyone give me a list of characters that need to be escaped using $_GET, and then also how to use them? Also, could you tell me if any characters simply are not allowed in a get? Example: getData.php?type=edit&user=myName&item=Item#1
Escape Tags In A String
I have a complete file in a single-line string. Now this string also contains <? and ?> or other script-tags. Of course if I "print" or "echo" the string the php won't be interpreted. But that is exactely what I want. I want scripts like PHP to be executed when I print that string e.g. in a template. Instead it shows something like this: " This is the content of my file <? echo "__FILE__"; ?> which I want to execute scripts. " Anyone know how to have them PHP-Tags be processed?
How To Tell If Escape Behavior Is Turned On
Is there a programmatic way in PHP (using PHP 4) to tell if the escaping apostraphes behavior is turned on when a request is submitted? What I would like to do is insert a value into my db table, but only apply escaping if PHP hasn't applied it for me ... $v = $_REQUEST['val']; if (escaping_disabled()) { $v = escape($v); } insertIntoDB($v);
How Do I Escape Angle Brackets?
I have a line like this in some PHP code on my Web page: $callthis =~ s/<[^>]*>//g; When the page runs, I get this error: Parse error: parse error, unexpected '<' in /Feedback.php on line 145 So I presume I must escape angle brackets somehow in the regular expression. How do I do it? I tried putting a backslash in front of each angle bracket, but that doesn't seem to work (same error). The purpose of the statement is to remove HTML tags from the string.
|
TRACKER
