Important!

Testing that lead me to a thought about Koobi's code above. If php automatically escapes those characters Koobi's code would make it go back the other way. As a result I in fact decided to try using Koobi's function and found some staggering results!

I hate to say it but using the function koobi said above is sceptable to sql injection attacks . Don't try any thing fancy just make sure you put the users input into the quotes and php will take care of the rest!!!