peterlaursen wrote on Aug 29 2005, 02:54 PM:
SQLyog is not a tool for code execution (except for SQL-code). It is a GUI tool for administering MySQL.
[post=”7032″]<{POST_SNAPBACK}>[/post]
I agree, and realise that. It's not about that though. If I write the sentence “mary had a little goat” in a text field in a database, it will be (at least should be) outputted on screen as “mary had a little goat”. If I have saved somewhere else on the website the php variable $varsentence and assigned it the value “mary had a little goat”, then I would like to enter the following value in the database field:
the sentence is $varsentence
If I do this though, when I call the webpage, what I see is “the sentence is $varsentence” and not “the sentence is mary had a little goat”. When I use phpMyAdmin, I have always inserted variables as escaped text (Ie. “the sentence is “.$varsentence) which seems to work, but sqlyog is doing something to it during the save to the database that is making whatever I enter in there literal.
Again, it's not about the execution of code, but I would assume that what I write into the database field is what would be outputted. It's almost like it's escaping what I enter prior to it being written to the database. Hope this helps a little more.
Cheers,
Kieran
