Home >> FAQs/Tutorials >> PHP Script Tutorials and Tips >> Index

PHP Tutorials - Quoting Text Values

By: FYICenter.com

(Continued from previous topic...)

How To Quote Text Values in SQL Statements?

Text values in SQL statements should be quoted with single quotes ('). If the text value contains a single quote ('), it should be protected by replacing it with two single quotes (''). In SQL language syntax, two single quotes represents one single quote in string literals. The tutorial exercise below shows you two INSERT statements. The first one will fail, because it has an un-protected single quote. The second one will be ok, because a str_replace() is used to replace (') with (''):

<?php
  include "mysql_connection.php";

  $notes = "It's a search engine!";
  $sql = "INSERT INTO fyi_links (id, url, notes) VALUES ("
      . " 201, 'www.google.com', '".$notes."')";
  if (mysql_query($sql, $con)) {
    print(mysql_affected_rows() . " rows inserted.\n");
  } else {
    print("SQL statement failed.\n");
  }

  $notes = "It's another search engine!";
  $notes = str_replace("'", "''", $notes);
  $sql = "INSERT INTO fyi_links (id, url, notes) VALUES ("
      . " 202, 'www.yahoo.com', '".$notes."')";
  if (mysql_query($sql, $con)) {
    print(mysql_affected_rows() . " rows inserted.\n");
  } else {
    print("SQL statement failed.\n");
  }

  mysql_close($con); 
?>

If you run this script, you will get something like this:

SQL statement failed.
1 rows inserted.

(Continued on next topic...)

  1. How To Install MySQL Server?
  2. How To Use MySQL Command Line Interface?
  3. What Do You Need to Connect PHP to MySQL?
  4. How To Connect to MySQL from a PHP Script?
  5. How To Create a Database?
  6. How To Select an Exiting Database?
  7. How To Run a SQL Statement?
  8. How To Create a Table?
  9. How To Get the Number of Rows Selected or Affected by a SQL Statement?
  10. How To Insert Data into a Table?
  11. How To Insert Rows Based on SELECT Statements?
  12. What Is a Result Set Object?
  13. How To Query Tables and Loop through the Returning Rows?
  14. How To Update Existing Rows in a Table?
  15. How To Delete Existing Rows in a Table?
  16. How To Quote Text Values in SQL Statements?
  17. How To Quote Date and Time Values in SQL Statements?
  18. How To Perform Key Word Search in Tables?
  19. How To Query Multiple Tables Jointly?
  20. How To Set the ID Column as Auto-Incremented?
  21. How To Get the Last ID Assigned by MySQL?

Selected Developer Jobs:

More...