StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POHow can I escape single quotes in this scenario?
primarykey
Id
15271874
data
AcceptedAnswerId
0
AnswerCount
2
ClosedDate
2013-03-07T14:10:13.080
CommentCount
7
CommunityOwnedDate
CreationDate
2013-03-07T12:58:19.027
FavoriteCount
0
LastActivityDate
2013-03-08T08:31:02.633
LastEditDate
2013-03-07T13:13:45.577
LastEditorUserId
1496029
OwnerUserId
1496029
ParentId
0
PostTypeId
1
Score
3
ViewCount
341
LastEditorDisplayName
text
Body
I have a page which makes a jquery call to an api to receive multiple wikipedia urls. I then extract the article names from the url (i.e. get <code>science</code> from <code>http://en.wikipedia.org/science</code> etc), add single quotes (') to each one, string them together and finally send them to a php page, which makes a mysql <code>select * from MyTable where title in('name1','name2','name3','name4')</code> call. The problem arises when the article name already has a single quote in it (i.e. "Hick's law"), as it breaks the <code>where in</code> single quotes. Here's the code I'm using: <pre><code>$.getJSON('http://ajax.googleapis.com/ajax/services/search/web?q=keyword site:en.wikipedia.org&rsz=8&v=1.0&callback=?', function (r) { var urls1=""; $.each(r.responseData.results, function(i, item) { var thisurl = (i==0) ? "'" + item.url.substring(item.url.lastIndexOf('/') + 1) + "'" : ",'" + item.url.substring(item.url.lastIndexOf('/') + 1) + "'"; urls1 += thisurl.replace(/_/g,'%20'); });}); $('#quotes').html($('<div>').load('pr.php?s='+urls1 +' #quotes', function() {} </code></pre> I'm adding the single quotes to the article names so the string should be all ready to go for the mysql <code>where in</code>. So to recap, the steps are as follows: <ol> <li>Make an api call and get multiple Wikipedia urls,</li> <li>get the article name from each url,</li> <li>add them to the <code>urls1</code> string while replacing underscores with spaces</li> <li>send the <code>urls1</code> string via ajax to the pr.php page.</li> <li>In pr.php I do the following: <code>"SELECT * FROM MyTable WHERE title in".$_GET['s']</code></li> </ol> I tried doing <code>mysql_real_escape_string($_GET['s'])</code> but that didn't work. I'm now trying to escape any single quotes inside the article names so the <code>where in</code> doesn't break, but it's not working. I tried changing the above to <pre><code>var thisurl=(i==0) ? "'"+item.url.substring(item.url.lastIndexOf('/') + 1).replace(/'/g, "\'")+"'":",'"+item.url.substring(item.url.lastIndexOf('/') + 1).replace(/'/g, "\'")+"'"; </code></pre> But it didn't work. Any ideas? TIA!
Tags
<php><jquery><mysql><sql><regex>
Title
How can I escape single quotes in this scenario?
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USPhil
UserOwnerUserId
1. USPhil
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTDuplicate
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POHow can I escape single quotes in this scenario?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 POHow can I escape single quotes in this scenario?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 POHow can I escape single quotes in this scenario?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTDownMod
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.