Php 将HTML实体放入MySQL数据库时解码它们
我试图正确地写入MySQL数据库,但它给了我HTML实体,而不是我想要的字符 我的页眉包含Php 将HTML实体放入MySQL数据库时解码它们,php,mysql,encoding,Php,Mysql,Encoding,我试图正确地写入MySQL数据库,但它给了我HTML实体,而不是我想要的字符 我的页眉包含 <meta charset="utf-8"> 屏幕上回响:Ranieri的鬼魂 MySQL数据库中的条目:Ranieri';s Ghost 我知道这很容易受到SQL注入的影响,但一旦修复,我将对其进行排序 SQL表行是一个VARCHAR(40),我尝试了排序规则“utf8_roman_ci”、“latin1_swedish_ci”、“utf8_swedish_ci”、“utf8_g
<meta charset="utf-8">
- 屏幕上回响:
Ranieri的鬼魂 - MySQL数据库中的条目:
Ranieri';s Ghost
你知道如何让它在没有特殊字符的情况下将
Ranieri的Ghost$team\u name\u converted=mysqli\u real\u escape\u string($con,$team\u name\u converted)编辑:
ENT\u COMPATENT\u QUOTES$team\u name\u converted=mysqli\u real\u escape\u string($con,$team\u name\u converted)ENT\u COMPATENT\u引号$team_name = "Ranieri's Ghost";
$team_name_converted = html_entity_decode($team_name, ENT_COMPAT, "UTF-8");
$val = mysqli_real_escape_string($con, $team_name_converted);
mysqli_query($con,"INSERT INTO mydbname (team_name) VALUES ('$team_name_converted') ");
echo $team_name_converted;
$team_name = "Ranieri's Ghost";
$team_name_converted = html_entity_decode($team_name, ENT_COMPAT, "UTF-8");
$val = mysqli_real_escape_string($con, $team_name_converted);
mysqli_query($con,"INSERT INTO mydbname (team_name) VALUES ('$team_name_converted') ");
echo $team_name_converted;
+1这表明“SQL注入预防”不是事后才想到的,它是一种基本的必要性。谢谢-这是有效的,但我还必须将上面的
ENT\u COMPATENT\u QUOTESENT\u COMPATENT\u QUOTES