Bastien Koert
On 2012-06-15, at 12:35 AM, "Ron Piggott" <ron.piggott@xxxxxxxxxxxxxxxxxx> wrote:
>
> I have setup the following echo after a database query:
>
> <?php
> echo "<input type=\"text\" name=\"description\" value=\"" . $email_template['description'] . "\" class=\"contact_center_email_template_maintenance_user_input_data\" />\r\n";
> ?>
>
> What I don’t understand is what to do in the event the variable $email_template['description'] retrieved in the database query contains a quotation mark “ --- In this event only the word “current” populates the “description” field
>
> <input type="text" name="description" value="current "Verse of the Day daily devotion" e-mail template" class="contact_center_email_template_maintenance_user_input_data" />
>
> Ron Piggott
>
>
>
> www.TheVerseOfTheDay.info
Wrap the output in htmlspecialchar()
--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP Home]
[PHP Users]
[Postgresql Discussion]
[Kernel Newbies]
[Plagiarism Notes]
[Postgresql]
[Yosemite News]
