Nate
Reputation: 577
mysqli_real_escape_string with array_map
I'm trying to sanitize $_POST data with array_map and mysqli_real_escape_string
the problem is that when I use the $link variable inside of array_map is it somehow gets converted to a string, I'm pretty sure I have the syntax right, but this one has been knawing at me for a while.
here is my (simplified) code:
$link = mysqli_connect($host, $user, $password);
$row = array_map('mysqli_real_escape_string', $row, array($link, $row));
Upvotes: 5
Views: 9575
Answers (1)
willdanceforfun
Reputation: 11240
While everybody recommends PDO, if you do wish to use the mysqli class to achieve what you wanted you need to pass the mysqli link and real_escape_string property to the array_map as an array like so:
$link = mysqli_connect($host, $user, $password);
$escaped_row = array_map(array($link, 'real_escape_string'), $row);
Upvotes: 11
Related Questions
- mysqli->real_escape_string
- Using mysql_real_escape_string in a multidimensional array in php
- mysqli_real_escape_string not working properly
- How to use PHP7's $mysqli->real_escape_string with an array
- PHP:Mysqli_real_escape_string
- mysqli_real_escape_string not work?
- mysqli_real_escape_string Not working inside array_map
- How to properly use mysqli_real_escape_string
- mysql_real_escape_string and array_map returns blank strings?
- PHP mysqli_real_escape_string problems