摘要:
Addslashes(): don't call it a comebackstill number one for escaping SQL statementsI've seen a lot of people talking about mysql_real_escape_string() vs addslashes() vs addcslashes(). There seems to be a lot of real confusion about what these functions do (even with the php.net manual around) 阅读全文