{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 趁早两清 的问题《Conversion of special characters in PHP》','https://www.manongdao.com/q-822168.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I've tried many functions already, but I simply can't figure this out. The right way, anyway.
In a form field called description, I can expect all kinds of characters. These need to be formatted into HTML entities before they're submitted to the db.
Now, my code:
$formdesc = htmlentities($_POST['formdesc'], ENT_QUOTES);
For a MySQL query, I simply add a "safe" function to slash the ' off the string:
mysql_real_escape_string($formdesc);
However, this sometimes doesn't work. "é," for instance, becomes é instead of é.
There must be a normal function for this. Does anyone know what I mean?
You need to specify the encoding for the
htmlentitiesfunction (here UTF-8):Otherwise the default value
ISO-8859-1is used and the characteréin your example encoded in UTF-8 as 0xC3A9 would be interpreted as two characters (Ãand©).But why do you use
htmlentitiesanyway? If you just want to escape the HTML special characters like&,<,>,"and'htmlspecialcharswill suffice.Seems like the usual PHP escaping functions do not work on utf-8 text. Maybe Handling UTF-8 in JavaScript, PHP, and Non-UTF8 Databases will help you. Another source about utf-8 and PHP is the PHP UTF-8 cheatsheet.
have you tried looking at htmlspecialchars() and htmlspecialchars_decode()
Josh