sql.SQLStr

From Garry's Mod
Jump to: navigation, search
 sql.SQLStr( )

Contents

Description

Escapes dangerous characters and symbols from user input used in an SQLite SQL Query.

NOTE

this function is not meant to be used with external database engines such as MySQL. Escaping strings with inadequate functions is dangerous!

Arguments

string string

The string to be escaped.

Arguments

boolean bNoQuotes=false

Set this as true, and the function will not wrap the input string in apostrophes.

Returns

string

The escaped input.
Personal tools
Navigation