mysql_escape_string

(PHP 4 >= 4.0.3)

mysql_escape_string --  Escapes a string for use in a mysql_query.

Description

string mysql_escape_string ( string unescaped_string)

This function will escape the unescaped_string, so that it is safe to place it in a mysql_query().

Note: mysql_escape_string() does not escape % and _.