[RESOLVED] Drop Down Selection that has an apostrophe

**beylah** · 04-16-2012 08:36 AM

I have created a select list but one of the names has an apostrophe. I when I echo then name it has a backslash in it. How do I fix this?

Here is the partial page list.php
And the result after the selection is: Assignments for Perpetua D\'Souza

PHP Code:


<form name="form" action="list.php" method="get">

<table cellpadding="2">

<tr><td><select name="q">

<option value=""></option>

<?php

//sql1 - finding LSS

include("../connectdb.php");

$sql1 = "SELECT * FROM directory WHERE department='Legal Support Services' ORDER BY name";

$result1 = mysql_query($sql1) or die("Couldnt execute query: ".mysql_error());

while ($rows=mysql_fetch_array($result1)) {

echo "<option value=\"$rows[name]\">$rows[name]</option>";

}

?>

</select></td><td><input type="image" value="Submit" src="../images/select.jpg" border="0" />

</td></tr>

</table>

</form>

<?php

$var = $_GET['q'];

$name = explode(',', $var);



if ($var == ""){

echo "<p>Please select the operator...</p>";

exit;

}

?>

<p class="head">Assignments for <?php echo "$name[1] $name[0]"; ?></p>

etc...

**NogDog** · 04-16-2012 01:44 PM

Is it in the database that way? If so, you probably need to disable magic_quotes_gpc in your PHP configuration (and run an update query on your DB to get rid of the slashes that ended up in there.)

If you cannot modify the PHP config, then you should run stripslashes() on the inputs before processing them and adding them to your DB.

If that is not feasible for some reason, then you can run stripslashes() on the output, but that's really just a band-aid and not a real fix.

**beylah** · 04-16-2012 02:16 PM

How does one disable magic_quotes_gpc. Also there are no slashes in the database the slashes show up when I echo results. So D'Souza is in the database correctly but prints as D\'Souza.

**TecBrat** · 04-16-2012 03:28 PM

This ought to help:
http://php.net/manual/en/security.ma....disabling.php

**NogDog** · 04-16-2012 07:06 PM

Perhaps you have magic_quotes_runtime enabled?

PHP Code:


ini_set('magic_quotes_runtime', false);

**ScottyBoy** · 04-17-2012 12:52 AM

I hear PHP is going to ditch magic quotes soon. I'm glad, as it's been a thorn in my side more than once.

**beylah** · 04-19-2012 09:47 AM

Does the following code go into a php.ini file

PHP Code:


ini_set('magic_quotes_runtime', false);

**ScottyBoy** · 04-19-2012 09:48 AM

I believe that code would go in the file you wish to disable magic quotes on. Sort of an on the fly option.

Thread: [RESOLVED] Drop Down Selection that has an apostrophe

Thread Tools

Display

[RESOLVED] Drop Down Selection that has an apostrophe

Disable magic_quotes_gpc

Thread Information

Users Browsing this Thread

Bookmarks

Bookmarks

Posting Permissions