to improve security. This past week I decided to implement this security measure by escaping the strings that were added to the database.
My site stopped functioning correctly. It only returned to normal after I removed ALL the escape string codes. My question is: why did this happen?
I escaped the username and password for login, and then the login process generated errors. It would yield a user already logged in error, a user unknown error, and an incorrect password error. I escaped the registration strings and the registration process and generated the error that the requested username was already taken by another user. When I checked the database itself, there were fields that were empty despite being filled in the form.
I thought I understood what the
did. I do not, or at least not well enough. Can someone explain to me what EXACTLY this function does?