Took me a while to realize this was NOT the command I wanted for escaping potentially harmful characters in a string that would be used as part of a system command. Instead, I needed either escapeshellarg() (http://www.php.net/manual/en/function.escapeshellarg.php) or escapeshellcmd() (http://www.php.net/manual/en/function.escapeshellcmd.php)
quotemeta
Description
string quotemeta ( string str )Returns a version of str with a backslash character (\) before every character that is among these:
. \ + * ? [ ^ ] ( $ ) |
注: 本函数可安全用于二进制对象。
See also addslashes(), htmlentities(), htmlspecialchars(), nl2br(), and stripslashes().
add a note
User Contributed Notes
George Adams
17-Feb-2006 12:57
17-Feb-2006 12:57
16-May-2001 06:41
This function escapes characters that have special meaning in regular expressions. preg_quote() <http://php.net/manual/en/function.preg-quote.php> has similar functionality, but is more powerful since it escapes more characters (including one user-specified character).
04-Apr-2001 03:04
qutemeta() is note for quoting meta tags, but is for quoting characters which can be misunderstanded by php or a database.