Does using magic_quotes() affect the use of mysql_real_escape_string()

Posted by hairdresser-101 on Stack Overflow See other posts from Stack Overflow or by hairdresser-101
Published on 2010-04-22T05:55:35Z Indexed on 2010/04/22 6:13 UTC
Read the original article Hit count: 185

Filed under:

If I have magic_quotes switched on and I use mysql_real_escape_string, will the tring be double escaped? Will it cause problems? I assume so based on the get_magic_quotes() function but just seeking confirmation. (PS it's easier to ask this question than test it in my office with all the security we have in place - It takes me 10-15 to configure everything to get a useable envirnment)

Related posts about magic-quotes

Magic quotes in PHP

as seen on Stack Overflow - Search for 'Stack Overflow'
According to the PHP manual, in order to make code more portable, they recommend using something like the following for escaping data: if (!get_magic_quotes_gpc()) { $lastname = addslashes($_POST['lastname']); } else { $lastname = $_POST['lastname']; } I have other validation checks that… >>> More
Successful SQL Injection despite PHP Magic Quotes

as seen on Stack Overflow - Search for 'Stack Overflow'
I have always read that Magic Quotes do not stop SQL Injections at all but I am not able to understand why not! As an example, let's say we have the following query: SELECT * FROM tablename WHERE email='$x'; Now, if the user input makes $x=' OR 1=1 --, the query would be: SELECT * FROM tablename … >>> More
Mysql Real Escape String PHP Function Adding "\" to My Field Entry

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello, I am submitting a form to my mySql database using PHP. I am sending the form data through the mysql_real_escape_string($content); function. When the entry shows up in my database (checking in myPhpAdmin) all of my double quotes and single quotes are escaped. I'm fairly certain this… >>> More
Why turning magic_quotes_gpc on in PHP is considered a bad practice?

as seen on Stack Overflow - Search for 'Stack Overflow'
Why turning magic_quotes_gpc on in PHP is considered a bad practice? >>> More
Does using magic_quotes() affect the use of mysql_real_escape_string()

as seen on Stack Overflow - Search for 'Stack Overflow'
If I have magic_quotes switched on and I use mysql_real_escape_string, will the tring be double escaped? Will it cause problems? I assume so based on the get_magic_quotes() function but just seeking confirmation. (PS it's easier to ask this question than test it in my office with all the security… >>> More

Developer IT

Does using magic_quotes() affect the use of mysql_real_escape_string() - Developer IT

Does using magic_quotes() affect the use of mysql_real_escape_string()

magic-quotes

magic-quotes-gpc

mysql-real-escape-string

php

mysql

Related posts about magic-quotes

Magic quotes in PHP

Successful SQL Injection despite PHP Magic Quotes

Mysql Real Escape String PHP Function Adding "\" to My Field Entry

Why turning magic_quotes_gpc on in PHP is considered a bad practice?

Does using magic_quotes() affect the use of mysql_real_escape_string()

Related posts about magic-quotes-gpc

Does using magic_quotes() affect the use of mysql_real_escape_string()

Categories cloud