PHP - Replace Single Quote Does Not Work

Let me preface this by saying that I've been using php for a while, but never got extremely advanced, so feel free to slap me about for something stupid...

I'm working through a jQuery & PHP book, and I've noticed that he's wrapping all his column and table names in the apostrophe ` when making MySQL queries .   In the past I've never done this.  What does the ` do?  I understand about single quotes and double quotes, but haven't come across the ` being used.  What's the deal?

Hi, I'm trying to type in a name of a song into an input field, for example:
I'll Be Missing you

This field is captured through $_POST and set to a variable $title

I then update the table with this new title. Once it is updated, all that is shown in the data is:

I

The single quote, and anything after it is gone completely.
Here is my query. How can I change this so it includes the single quote and everything after it?

$sql = "UPDATE sheets SET artist = '$artist', title = '$title', active = '$activestatus' WHERE id = $value";
        $result = mysql_query($sql) or die(mysql_error().'<br>'.$sql);  

If more code is required to understand what I'm talking about, let me know.

Is there a difference between a single quote regex and and double quote regex ?   for example :

<?php
$res1 = preg_match('/shi*t/', $comment);
$res2 = preg_match("/shi*t/", $comment);
?>

Thank you
Edited by Dareros, 17 September 2014 - 07:07 PM.

Hi
I have a simple form and when the user submits, php is putting a \ before every single quote entered in the field. So for example, if a user enters O'Neill, once i do
$lastName = $_POST["lastname"];

$lastName comes back as: O\'Neill

is there some way I can turn this off?

When I add a ' or " quotes in a textarea I get a sql error when it tries to insert the record.    I was told to use mysqli_real_escape_string but that didn't work.    Here's my code -

   $blog= mysqli_real_escape_string($con, $_POST['blog']);
   

        $blog= $_POST['message'];
            
        $sql = "SELECT * FROM table WHERE `message` = '{$message}'";
        
        $result = mysql_query($sql);
        
        if ( mysql_num_rows ( $result ) > 0 )
        {
                        
            $error = "Message Exists.";
        }
        
        else
        {
        
         $error = "This message does not exist. Insert it!!!";
        
         $sql="INSERT INTO table (message) VALUES ('$_POST[message])";
        
        
        }
        
        if (!mysqli_query($con,$sql))
         {
         die('Error: ' . mysqli_error($con));
         }
        
        mysqli_close($con)

Edited by barkly, 26 October 2014 - 09:31 PM.

I'm so sorry for this question but I not really know how to play with single and double quote.

If I have a query like this:

Code: [Select]
  mysql_query('UPDATE table SET Status=1,Sending=Done WHERE ID IN ('.implode(',', $done).')');
And I wish to add Code: [Select]
SentAt='$date' in the query as well , and I try this:

Code: [Select]
  mysql_query('UPDATE table SET Status=1,Sending=Done,SentAt='$date' WHERE ID IN ('.implode(',', $done).')');
Not working...how should I write it?

Thank you.

Hi, I believe this is my first post on here. First off let me say thank you for silently helping out in the past while I keep on learning PHP.

I have decided to build an image gallery, and I am having problems with the page numbering links and the breadcrumbs.

Reson I decided to build my own is that I wanted a challange to learn more.
I could not find anything that would intregrate with the site as I wanted it to (pulled as a function so offers some customising with options).

The problem that I am having is that the <a href= tag is starting to give multipul "/"s when I only need one, so that the url at the top is coming up as

http://localhost/mmv4/gallery/pics///Ax/Ax_Jo/

when I am wanting http://localhost/mmv4/gallery/pics/Ax/Ax_Jo/IMG_4244.JPG.

I have used str_replace to catch //s and more, but this then adds odd slashes on the end so the page numbeing is getting odd results. some dirs have the / on the end and some do not, so the links are sometimes "visited" and others not.

I beleve that the problem is generated in
Code: [Select]
<?php
if(isset($_GET['album'])) {
      //load the available dirs into an array so that the sneeky users cannot get further back.
      $files = scandir($gal);
      $dirs = array();
      foreach($files as $file){
         if($file != '.' && $file != '..' && $file != 'thumbs') {
            if(is_dir($gal."/".$file)) {
               $dirs[] = $file;
               //echo $file ."<br />\n";
            }
         }
      }
      
      //if(in_array($_GET['album'],$dirs)) {
         $album = "/".$_GET['album']."/";
         $album = str_replace("..", "", $album);
      //}
      //else {
      //   $output .= "<p>There is no album called \"$_GET[album]\", please select an album from below.</p>";
      //}
   }

or the breadcrumbs bit
Code: [Select]
<?php
if($crumbs == 1) {
      //bread crums
       $path = $gal.$album;
       $path = explode("/", $path);
   
   
       $crumbs = array();
       foreach($path as $key => $value) {
          if($value != ""){
             $crumbs[] = $value;
          }
       }
       // create Breadcrumbs div
   
       $output .= "<div id=\"breadcrumbs\">";
       $number = count($crumbs);
       $real = "";
       foreach($crumbs as $num => $link) {
          if ($link == $gal) {
             $link = "Gallery Home";
          }
          if ($num == $number -1) {
             $output .= $link;
          }
          else{
             if ($num >= 1){
                $real ="";
                for($x=1; $x<=$num; $x++) {
                   $real .= "/".$crumbs[$x];
                }
                $output .= "<a href=\"?album=".str_replace("/", "",$real)."\">".$link."</a>"." <- ";
             }
             else{
                $output .= "<a href=\"?album=".str_replace("/", "",$real)."\">".$link."</a>"." <- ";
             }
          }
          $num +1;
         
       }
   
       //close breadcrumbs div
       $output .= "</div>";
   }

Can any one please help me shed some light on this one, I am confused.
I can send / attach the full source if needed.

MOD EDIT: tags fixed for syntax highlighting . . .

This topic has been moved to PHP Regex.

http://www.phpfreaks.com/forums/index.php?topic=314913.0

PHP script return 20 UL LIST values like,

< ul >

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T

< /ul >

How to display UL LIST into row wise 5 columns like

A B C D
E F G H
I J K L
M N O P
Q R S T (20 ITEMS)

Edited December 7, 2019 by aveeva

Hi, I've been scratching my head for a while now about how to do this, I'm relatively new to php and mysql and perhaps foolishly taking on creating a user area for a website.  I have everything else working, all of my register account functions and confirmations and all of the login scripts etc. 

I have created a profile page which returns various information to the user (this bit works fine) and I've got some nice show/hide toggles running with some javascript/css but my intention is to allow the user to change thier information (e-mail address, contact phone number and also whether they are subscribed to the e-mail list), it also displays any support tickets or messages.

So after the long intro, here's what I'm struggling with...  I have a form in a visibility toggled <div> which submits a 'change_email' script, so a user wants to change their e-mail, clicks on change, the <div> appears, they bang in the new e-mail and hit submit.

My php script appears to work (because it doesn't throw up any errors), until you realise that actually it's not updated the record in the db...

I'm using mysql_query("UPDATE users SET email='$new_email' WHERE username='$user'");

Do I need to setup variables for all of the information in the db (name, username, password, email, contno etc etc) and include them in the command to get it to work or should that just pick the correct record and then update it? If that is the case is there a way I can include 'blank' variables so I don't have to set them all up...

e.g.  mysql_query("UPDATE users SET user='',password='',email='$new_email', etc WHERE username='$user'");

Many thanks in anticipation

The situation is that I have a large string with some identifiers to say "replace me" with something else. My goal is to replace the values, but if one replacement includes one of the other keys, I don't want to replace it.   For example:

<?php
$str = 'some blob ~abc~ followed by ~def~';

$arr_orig = array(
	'~abc~',
	'~def~'
);

$arr_new  = array(
	'value~def~',
	'blah'
);

echo str_replace( $arr_orig, $arr_new, $str );
?>

This will echo: some blob valueblah followed by blah   But that's not what I'm trying to accomplish. Basically, I want ~abc~ to be replaced with the literal: value~def~ and for the ~def~ that happens to be part of that string to NOT be replaced. I hope what I'm asking is clear. Basically, preg_replace/str_replace with arrays seems no different than just doing a FOR loop and replacing ~abc~ and then ~def~. But that's not what I need.   I'm hoping that if ~abc~ is replaced with text that happens to be another identifier -- ~def~, ~xyz~, whatever -- that this already replaced text is not again replaced. Is there a built-in function to do something like this? If not, should I just parse the whole string and count characters or something? Seems like a pain (and slow!)

Hi
i wrote a find and replace code but my code replace last value of array and skip the first, second.... values in the array.
Please give me an idea because i stack with this code.

Regards


$KeyWord  = explode("\n", $RowGetWords['KEYWORDS']);
$Replace  = explode("\n", $RowGetWords['ReplaceTo']);

for($i=0; $i<count($KeyWord); $i++){
$pattern = $KeyWord[$i];
$replace = "<a href=\"" .$URL. "\" target=\"_blank\" >" .$Replace[$i]. "</a>";
$html = str_replace($pattern, $replace, $Row['MessageBody']);
}

I need some help working out this MySQL query:   I need it to pull a random quote, that hasn't been used before (that's the 'checked' part of the query), and it needs to find it based on a specific category. I am using this alongside PHP with MySQLI Prepared method.  

SELECT `id`, `word`, `def` FROM `dictionary` AS `r1` JOIN (SELECT (RAND() * (SELECT MAX(`id`) FROM `dictionary`)) AS `id`) AS `r2` WHERE `r1`.`id` >= `r2`.`id` AND `category`=? AND `checked`=0 ORDER BY `r1`.`id` ASC LIMIT 1

  This query yields an error stating that the id column is ambiguous. 

I just finished adding the ability to add Comments after Articles on my website.

Now it would be nice if people could Quote other Posts/Comments juts like you can do here on PHPFreaks.

The problem is that I have this code to eliminate any security issues with HTML...

echo ' <div class="userPost">
<span class="commentDate">Posted on: ' . date('Y-m-d g:ia', strtotime($createdOn)) . '</span>
<span class="commentNo">#' . $commentCount . '</span>
<p>' . nl2br(htmlentities($comments, ENT_QUOTES)) . '</p>
</div>';



Any suggestions to have it both ways?

Thanks,


Debbie