When i am using mysql_real_escape_string on my unescaped strings the data in the database is storing with the backslashes which should not happen.
I have magic_quotes_gpc OFF not sure why this is happening. Any idea ?
Is there any setting in the mysql database which needs to be modified.
I am not using addslashes any where in the code. PHP language.
Please help.
There are several variants of magic_quotes all of which are very invasive and cannot be overridden. I think its unlikely that that extra escaping is being done by the DBMS.
Have you checked what the data looks like before applying the mysql_real_escape_string() - I would bet its already escaped somehow.
C.
the answer is simple. There are no setting in the mysql database which needs to be modified. It is your code/settings.
Either you have magic_quotes_gpc on and it needs to be double-checked, or some of your code does another slashing.
stripslashes() is when the PHP directive magic_quotes_gpc is on (it's on by default), and you aren't inserting this data into a place (such as a database) that requires escaping. For example, if you're simply outputting data straight from an HTML form.
<?php
$str = "Is your name O\'reilly?";
// Outputs: Is your name O'reilly?
echo stripslashes($str);
?>
Let us know when you use stripslashes, what does your input turn into. Does it get into required format. This is to check whether there is something going wrong with your input coming.
Since you have told that without applying mysql_real_escape_string your data gets stored without any blackSlashes... and after applying it you get blackslash... i personally feel double check your code whether you are applying addslashes some where.
Some questions...