Question : mysql_real_escape_string equivalent when you dont have a db connection

hello,

i just got hacked so by someone using a contact form which sends an email using PHP, their is no database connection so i need code which will do the same as mysql_real_escape_string so i can secure my contact form from being hacked.

Answer : mysql_real_escape_string equivalent when you dont have a db connection

OOPS.. I must be really sleepy.. To sum it up:

You have to use addcslashes - note the C in between. In this function, you can give the list of characters to be escaped.
So, addcslashes($str, "\x00\n\r\'\"\x1a"); is equivalent to mysql_real_escape_string($str); since the latter escapes only the characters listed in the former.
Here is the correct link: http://www.php.net/manual/en/function.addcslashes.php

Random Solutions

How do I remove a Hamachi Network Interface.

Sum if from access data base

Outlook 2007 Continually asks for an Exchange Server password

HTML - SQL - Carrying Form Variables from Page to Page

creating image using coldfusion

accessing exchange 2003 through an iphone

How do I delete some lines in a text file?

CISCO PIX 525: understanding statistics

VB.NET Setup Installing App Files Without Asking What Folder to Install

publishing websites in TMG 2010