Bad coding.
I don't know if magic_quotes_gpc covers single quotes as well as double. But, it cannot be set at run time (if that's how you're doing it), and it will be overriden by magic_quotes_sybase.
The easiest way is just to fix every instance you stumble across of bad SQL by manually adding "addslashes()" around variables before the query is run.
|