mysql_real_escape_string(raw_string[,link_identifier])

Description: Escapes special characters in a string given by raw_string for use in a SQL statement.

Returns the escaped string with special characters escaped; safe to be passed on to mysql_query(). Takes into account the current character set of the connection (either the current active connection, or that given by link_identifier).

See also: addslashes(), mysql_escape_string()