StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
3911681
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
1
CommunityOwnedDate
CreationDate
2010-10-12T04:25:09.553
FavoriteCount
0
LastActivityDate
2010-10-12T04:25:09.553
LastEditDate
LastEditorUserId
0
OwnerUserId
20860
ParentId
3911548
PostTypeId
2
Score
8
ViewCount
0
LastEditorDisplayName
text
Body
First point: If you're getting an error from <code>mysql_real_escape_string()</code>, it's because you are calling the function before you're connected to the database. It looks like you connect to the database right before you run a query. So anything you do before you call your <code>mm_mysqlquery()</code> function won't have a connection. The <code>mysql_real_escape_string()</code> function needs a live connection to the database, so it can do the right kind of escaping with respect to the connection's character set. So you need to connect before you do escaping. It's better to do that anyway, because if you make several queries during the course of a single PHP request, it's less overhead to connect once and use the same connection for all your queries. Second, please don't take suggestions to use <code>addslashes()</code> -- it does not do the same thing as <code>mysql_real_escape_string()</code>. The two are not interchangeable. You should get into the habit of using <code>mysql_real_escape_string()</code>. Third, your <code>sani()</code> function shows a common misconception. <pre><code>function sani($string){ $string = strip_tags($string); $string = htmlspecialchars($string); $string = trim(rtrim(ltrim($string))); $string = mysql_real_escape_string($string); return $string; } </code></pre> The common misconception is that you need all these functions to make a string safe in an SQL statement. You don't. Only <code>mysql_real_escape_string()</code> is necessary. All the other functions in this example do nothing to protect against SQL injection. Those functions are useful if you output a string in an HTML presentation and you want to reduce the risk of XSS attacks, but then <code>mysql_real_escape_string()</code> is irrelevant. Use each type of sanitizing method in its appropriate context.
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POCan't use mysql_real_escape_string
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USBill Karwin
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. CO+1 it's all about context
 singulars
 PostPostId
 PO
 UserUserId
 USalex

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.