escaping

I have a text field and its breaking my sql statement. How do i escape all the chars in that field? I am using sqlite with http://sqlite.phxsoftware.com/ in C# You should be using a parameter as in: SQLiteCommand cmd = _connection.CreateCommand(); cmd.CommandType = CommandType.Text; cmd.CommandText = "SELECT * FROM MyTable WHERE MyColumn = @parameter"; cmd.Parameters.Add( new SQLiteParameter( "@parameter", textfield ) ); SQLiteDataReader reader = cmd.ExecuteReader(); Using a parametrised SQL will escape all input values and help protect you from SQL injection attacks. You can also replace all

I am trying to send an URL-encoded post to a REST API implemented in PHP. The POST data contains two user-provided strings: WebRequest request = HttpWebRequest.Create(new Uri(serverUri, "rest")); request.Method = "POST"; request.ContentType = "application/x-www-form-urlencoded; charset=UTF-8"; request.Headers.Add("Content-Transfer-Encoding", "binary"); // Form the url-encoded credentials we'll use to log in StringBuilder builder = new StringBuilder(); builder.Append("user="); builder.Append(user); builder.Append("&password="); builder.Append(password); byte[] credentials = Encoding.UTF8

I am encountering a problem with a get parameter in conjunction with a htaccess rewrite rule. Below is the urlencode()'ed link; the rewrite rule I use to redirect to index.php, and lastly, a print_r($_GET) on the index.php. As you can see, the urlescaped ampersand is not part of the value for variable static, but instead and contrary to my expectation gets interpreted as a variable seperator. Why? Initial link: <a href="static/Game-Tech-%26-Arts-Lab">link</a> .htaccess: RewriteRule ^static/(.*)$ /index.php?static=$1 [L] index.php: Array ( [static] => Game-Tech- [-Arts-Lab] => ) mario Ah, okay.

I have a LaTeX file I want to read in with Python 3 and format a value into the resultant string. Something like: ... \textbf{REPLACE VALUE HERE} ... But I have not been able to figure out how to do this since the new way of doing string formatting uses {val} notation and since it is a LaTeX document, there are tons of extra {} characters. I've tried something like: '\textbf{This and that} plus \textbf{{val}}'.format(val='6') but I get KeyError: 'This and that' Method 1, which is what I'd actually do: use a string.Template instead. >>> from string import Template >>> Template(r'\textbf{This

Anyone know of any Perl module to escape text in an XML document? I'm generating XML which will contain text that was entered by the user. I want to correctly handle the text so that the resulting XML is well formed. zakovyrya I personally prefer XML::LibXML - Perl binding for libxml. One of the pros - it uses one of the fastest XML processing library available. Here is an example for creating text node: use XML::LibXML; my $doc = XML::LibXML::Document->new('1.0',$some_encoding); my $element = $doc->createElement($name); $element->appendText($text); $xml_fragment = $element->toString(); $xml