I know that single quotes have to be escaped (yay) but are there any other characters that have to be esaped when using the pg_exec($connection,$command);
where $command has user input. as of now im using ereg_replace("'","\'",$command). are there any functions that automatically clean up strings for pg command use, and if there isnt, what other special charactors need to be escaped?
thx
marty
where $command has user input. as of now im using ereg_replace("'","\'",$command). are there any functions that automatically clean up strings for pg command use, and if there isnt, what other special charactors need to be escaped?
thx
marty