0

尝试使用 mysql_real_escape() 函数时出现以下错误

Fatal error: Call to undefined function mysql_real_escape() in /var/www/registration/index.php on line 169.

怎么了???

$result = mysql_send("INSERT customers  SET
                                user= $username, 
                                pword= $pass1, 
                 //line169      firstname='".mysql_real_escape($firstname)."', 
                                lastname='".mysql_real_escape($lastname)."', 
                                email='".mysql_real_escape($email)."', 
                                active='No', 
                                activecode= $activecode, 
                                dateofbirth='".mysql_real_escape($dateofbirth)."', 
                                gender='".mysql_real_escape($gender)."', 
                                title='".mysql_real_escape($title)."', 
                                occupation='".mysql_real_escape($occupation)."', 
                                address='".mysql_real_escape($address)."', 
                                city='".mysql_real_escape($city)."', 
                                country='".mysql_real_escape($country)."', 
                                zip='".mysql_real_escape($zip)."', 
                                mobile='".mysql_real_escape($mobile)."', 
                                telephone='".mysql_real_escape($telephone)."', 
                                fax='".mysql_real_escape($fax)."', 

                                website='".mysql_real_escape($website)."'
                    ");
4

2 回答 2

4

不是mysql_real_escape()而是mysql_real_escape _string ()

于 2010-08-30T12:20:17.013 回答
1

我相信你正在寻找的功能mysql_real_escape_string

也就是说,检查 PDO 或 mysqli 和绑定参数,这是一个更好的长期解决方案。

于 2010-08-30T12:21:53.393 回答