[eluser]php_princess[/eluser]
I always use $this->db->escape() on anything I put in the database (unless I'm using active record). It doesn't seem to put slashes in front of single quotes because I see stuff in the database with naked single quotes.
This is bad, right? I need to do something to make sure single quotes always have a back slash in front of them, yes?