Try doubling up the single quotes (many databases expect it that way), so it would be : INSERT INTO table_name (field1, field2) VALUES (123, ‘Hello there”s’); Relevant quote from the documentation: A string constant is formed by enclosing the string in single quotes (‘). A single quote within the string can be encoded by putting … Read more
You should be escaping each of these strings (in both snippets) with mysql_real_escape_string(). http://us3.php.net/mysql-real-escape-string The reason your two queries are behaving differently is likely because you have magic_quotes_gpc turned on (which you should know is a bad idea). This means that strings gathered from $_GET, $_POST and $_COOKIES are escaped for you (i.e., “O’Brien” -> … Read more
Escape it with another %: $stringWithVariables=”About to deduct 50%% of %s %s from your Top-Up account.”;
This variant – <a title=”Some "text"”>Hover me</a> Is correct and it works as expected – you see normal quotes in rendered page.
Most answers given here have a huge disadvantage: if the string you are trying to convert isn’t trusted then you will end up with a Cross-Site Scripting (XSS) vulnerability. For the function in the accepted answer, consider the following: htmlDecode(“<img src=”https://stackoverflow.com/questions/3700326/dummy” onerror=”alert(/xss/)”>”); The string here contains an unescaped HTML tag, so instead of decoding anything … Read more
Single quotation marks won’t do in that case. You have to add quotation marks around each path and also enclose the whole command in quotation marks: cmd /C “”C:\Program Files (x86)\WinRar\Rar.exe” a “D:\Hello 2\File.rar” “D:\Hello 2\*.*””
You need to escape the string you are writing out into DoEdit to scrub out the double-quote characters. They are causing the onclick HTML attribute to close prematurely. Using the JavaScript escape character, \, isn’t sufficient in the HTML context. You need to replace the double-quote with the proper XML entity representation, ".
Assuming xmlDoc is an XmlDocument object whats wrong with xmlDoc.OuterXml? return xmlDoc.OuterXml; The OuterXml property returns a string version of the xml.
Use 2 quotes: “Samsung U600 24″””
Most answers given here have a huge disadvantage: if the string you are trying to convert isn’t trusted then you will end up with a Cross-Site Scripting (XSS) vulnerability. For the function in the accepted answer, consider the following: htmlDecode(“<img src=”https://stackoverflow.com/questions/1912501/dummy” onerror=”alert(/xss/)”>”); The string here contains an unescaped HTML tag, so instead of decoding anything … Read more