Take magic_quotes_sybase in account (Thanks arpad for the hint)

git-svn-id: https://svn.php.net/repository/phpdoc/en/trunk@234042 c90b9560-bf6c-de11-be94-00142212c4b1

reference/mysql/functions/mysql-real-escape-string.xml

@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.27 $ -->
+<!-- $Revision: 1.28 $ -->
 <refentry id="function.mysql-real-escape-string">
  <refnamediv>
   <refname>mysql_real_escape_string</refname>
@@ -134,18 +134,23 @@ if (isset($_POST['product_name']) && isset($_POST['product_description']) && iss
 
     } else {
         
-        // Reverse magic_quotes_gpc effects on those vars if ON.
+        // Reverse magic_quotes_gpc/magic_quotes_sybase effects on those vars if ON.
 
         if(get_magic_quotes_gpc()) {
-            $product_name        = stripslashes($_POST['product_name']);
-            $product_description = stripslashes($_POST['product_description']);
+            if(ini_get('magic_quotes_sybase')) {
+                $product_name        = str_replace("''", "'", $_POST['product_name']);
+                $product_description = str_replace("''", "'", $_POST['product_description']);
+            } else {
+                $product_name        = stripslashes($_POST['product_name']);
+                $product_description = stripslashes($_POST['product_description']);
+            }
         } else {
             $product_name        = $_POST['product_name'];
             $product_description = $_POST['product_description'];
         }
 
         // Make a safe query
-        $query = sprintf("INSERT INTO products (`name`, `description`, `user_id`) VALUES ('%s', '%s', '%d')",
+        $query = sprintf("INSERT INTO products (`name`, `description`, `user_id`) VALUES ('%s', '%s', %d)",
                     mysql_real_escape_string($product_name, $link),
                     mysql_real_escape_string($product_description, $link),
                     $_POST['user_id']);