$str = "Hello world. (can you hear me?)";
The output of the code above will be:
Hello world\. \(can you hear me\?\)
(PHP 4, PHP 5)
quotemeta — Quote meta characters
Returns a version of str with a backslash character (\) before every character that is among these:
The input string.
Returns the string with meta characters quoted, or
FALSE if an empty
string is given as
Note: This function is binary-safe.
- addslashes() - Quote string with slashes
- addcslashes() - Quote string with slashes in a C style
- htmlentities() - Convert all applicable characters to HTML entities
- htmlspecialchars() - Convert special characters to HTML entities
- nl2br() - Inserts HTML line breaks before all newlines in a string
- stripslashes() - Un-quotes a quoted string
- stripcslashes() - Un-quote string quoted with addcslashes
- preg_match() - Perform a regular expression match
- preg_quote() - Quote regular expression characters
Took me a while to realize this was NOT the command I wanted for escaping potentially harmful characters in a string that would be used as part of a system command. Instead, I needed either escapeshellarg() (http://www.php.net/manual/en/function.escapeshellarg.php) or escapeshellcmd() (http://www.php.net/manual/en/function.escapeshellcmd.php)
This function escapes characters that have special meaning in regular expressions. preg_quote() <http://php.net/manual/en/function.preg-quote.php> has similar functionality, but is more powerful since it escapes more characters (including one user-specified character).