I have a problem with adding some text from my site if that text contain some symbols like (", ? , script, or some sql tags ) ..
Here is a little bit of code,hope this is enough :)
if(isset($_POST['submit_achievement'])){
$title = $_POST['title_field'];
$description = $_POST['description_field'];
$sql2 = 'INSERT INTO achievements (title,description) VALUES (' . '"' .$title . '"'. "," . '"' . $description . '"' . ')';
$records2 = mysqli_query($conn,$sql2);
}
If you need any more line from my code just write,thanks a lot! :)