htmlspecialchars for mysql

Yes, it’s bad, evil, nasty, and just plain wrong.

But that doesn’t mean that there aren’t occasions when you do need to spew out html directly from mysql (or at least I’ve found one).

DELIMITER $$

DROP FUNCTION IF EXISTS `htmlspecialchars`$$
CREATE FUNCTION `htmlspecialchars` (_str text) RETURNS text
BEGIN
	set _str = replace(_str, '"', '&quot;');
	set _str = replace(_str, '&', '&amp;');
	set _str = replace(_str, '<', '&lt;');
	set _str = replace(_str, '>', '&gt;');
	return _str;
END$$

DELIMITER ;

Usual disclaimers apply.

Popularity: 4% [?]

htmlspecialchars, mysql

This entry was posted on March 2, 2009, 1:56 pm and is filed under Programming. You can follow any responses to this entry through RSS 2.0. You can leave a response, or trackback from your own site.

Comments (0)
Related Posts

No comments yet.

Recent Posts
March 2009

S M T W T F S

« Feb Apr »

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28

29 30 31
Popular
Tags
Ads apple Argentina art artificial intelligence asterisk AVI Brain buenos aires Cisco codecs Delivery Reports E65 eircom ffmpeg grumble humour ices iPhone ipod ireland Linux lisbon treaty MP4 MPEG4 mysql netopia nokia OS X pc personal php Pictures rsync safari sip SMS ssh ubuntu video VOIP webkit WEP wifi wordpress
Archives
Meta

March 2009
S	M	T	W	T	F	S
« Feb		Apr »
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30	31

SetTextSize SetPageWidth

BrickyBox

htmlspecialchars for mysql

Recent Posts

Popular

Tags

Archives

Meta