[PHP] Basic Escape SQLi

1. <?php
2. /** Basic SQLi protection by escaping
3. *\
4. function sanitize ($value)
5. {
6. if( get_magic_quotes_gpc() )
7. {
8. $value = stripslashes( $value );
9. }
10. if( function_exists( “mysql_real_escape_string” ) )
11. {
12. $value = mysql_real_escape_string( $value );
13. }
14. else
15. {
16. $value = addslashes( $value );
17. }
18. return $value;
19. }
20.  
21. ?>