the value is not inserted in db

Question

i want to store more than 1000 character in database i use mysql database.

when i insert 50-100 character the code run successfully.but when i insert 1000 character it not inserted. even it also not give error.

when i use similar insert query in myphpAdmin, the query run successfully. this is query

first two fields are varchar & last field is Longtext

INSERT INTO news (headline,date,discription)
VALUES ("hi","date","A crumbling pitch and some resurgent Indian bowling have set up a gripping deciding Test with the series lead threatening to slip out of the hosts' grasp. India had snuck ahead at the end of the third day, but were dominant by lunch on the fourth as Pragyan Ojha and Amit Mishra ran through the Sri Lankan batting. Thilan Samaraweera, the centurion from the first innings, held firm and is key to Sri Lanka's fortunes as they try to build a lead that is competitive enough to give their spinners a chance. ")

this run successfully in myphpadmin

but when i try to run in php then it cant run

here php code

 $insert = "INSERT INTO news (headline,date,discription)
 VALUES ('".$_POST['headline']."','".$_POST['date5']."','".$_POST['discription']."')";
 $add_news = mysql_query($insert);

& this code is use in tag

<textarea rows="2" cols="2" style="overflow: scroll; height: 90px; width: 635px;" name="discription"></textarea>

Answer 1

Use the mysql_real_escape_string function before your string variables eg:

mysql_real_escape_string($_POST['discription'])

This could be most likely because the text contains single quotes which should be escaped.

mysql_real_escape_string — Escapes special characters in a string for use in an SQL statement

Your code should look like this:

$headline = mysql_real_escape_string($_POST['headline']);
$description= mysql_real_escape_string($_POST['discription']);
$date= mysql_real_escape_string($_POST['date5']);

$insert = "INSERT INTO news (headline,date,discription) VALUES ('".$headline."','".$date."','".$description."')";
$add_news = mysql_query($insert) or die(mysql_error());

Note that addition of or die(mysql_error() at the end, this would tell you if there is any error in the query itself.