Microweber\Utils\Database::escape_string PHP Method

Database Class Documentation Show file Open project: microweber/microweber

escape_string() public method

Escapes a string from sql injection.

public escape_string ( string \| array $value ) : mixed
$value	string \| array	to escape
return	mixed	Escaped string

    public function escape_string($value)
    {
        if (is_array($value)) {
            foreach ($value as $k => $v) {
                $value[$k] = $this->escape_string($v);
            }
            return $value;
        } else {
            if (!is_string($value)) {
                return $value;
            }
            $str_crc = 'esc' . crc32($value);
            if (isset($this->mw_escaped_strings[$str_crc])) {
                return $this->mw_escaped_strings[$str_crc];
            }
            $search = array('\\', "", "\n", "\r", "'", '"', "");
            $replace = array('\\\\', '\\0', '\\n', '\\r', "\\'", '\\"', '\\Z');
            $new = str_replace($search, $replace, $value);
            $this->mw_escaped_strings[$str_crc] = $new;
            return $new;
        }
    }

Database

_exec_table_builder

add_table_index

assoc_table_name

build_table

build_tables

clean_input

escape_string

get_fields

get_prefix

get_sql_engine

get_table_ddl