How to prevent SQL injection in your website
to prevent sql injection use mysql_real_escape_string,in the higher version of php magic_quotes will do the “/” adding infront the value.
Iconic One Theme | Powered by Wordpress