Creating a guest book
View Single Post
01-31-2008, 08:43 PM
Join Date: Jan 2008
Originally Posted by
You can use the function urldecode() to decode your encoded URL string. I've never used it on an email or such but that's me. addslashes() should suffice. And those can be decoded with stripslashes() as you might know. addslashes() only escapes quote tags and such. For extra security, I advice you to use mysql_real_escape_string for your queries and even sprintf() if you want to be on the safe side.
Thanks for your reply.
At first read that made no sense to me what so ever. After a second time things started to click! I had been using addslashes to encode all of the fields, however, I didn't know how to (or that I had to) decode them. I've now used stripslashes and urldecode to decode the strings.
I've also used mysql_real_escape for my queries but haven't heard of sprintf() before.
PS: How easy is it to make a variable a hyperlink?
Last edited by StevenF : 01-31-2008 at
View Public Profile
Send a private message to StevenF
Find More Posts by StevenF