addslashes

PHP 4, PHP 5, PHP 7, PHP 8
addslashes - Quote string with slashes

addslashes( string$string ): string

Returns a string with backslashes added before characters that need to be escaped. These characters are: single quote (') double quote (") backslash (\) NUL (the NUL byte)

A use case of addslashes is escaping the aforementioned characters in a string that is to be evaluated by PHP:

<?php
$str 
"O'Reilly?";
eval(
"echo '" addslashes($str) . "';");
?>

The addslashes is sometimes incorrectly used to try to prevent SQL Injection. Instead, database-specific escaping functions and/or prepared statements should be used.

Parameters

string

The string to be escaped.

Return Values

Returns the escaped string.

Related Functions

Example of addslashes

Show all examples for addslashes

PHP Version:


Function addslashes:

Strings Functions

Most used PHP functions