Im using smarty and mysql_real_escape_string()
for user input,
and when I insert some code with '
or "
, and lookup in phpmyadmin
it shows without backslashes.
When I get record from DB i doesn't have backslashes also. But when I just pass escaped string without inserting into the db it is backslashed.
Shouldn't it add slashes, insert with them and then I would strip them when i would output? Or am I missing something?