Warning: mysql_real_escape_string(): Access denied for user ''@'localhost' (using password: NO)

Question

When is use the following code without mysql_real_escape_string, works fine. I simply trying to grab a text string that may have apost. from an input form and format it to p

Answer 1

Try mysqli_real_escape_string instead.

Answer 2

You must connect with database first before using Warning: mysql_real_escape_string()

Answer 3

No, you shouldn't mix mysql and mysqli.

Use here instead of mysql_real_escape_string($var):

$con->real_escape_string($var);

Answer 4

You're at risk of MySQL injections. Never insert data directly to a database without some sort of projection first. It's a major security risk. Also use mysqli_real_escape_string instead, and note that your $_POST[webSite] is unprotected.

Also, your error means that your database details are not correct.

Answer 5

A working code example that is a solution to this problem is available here:

http://www.w3schools.com/php/func_mysqli_real_escape_string.asp