function db_update($table, $columns, $values) { $args = func_get_args(); $args = array_slice($args, 2); $columns = explode(',', $columns); $num_fields = count($columns); if (is_array($values)) { $args = array_slice($args, 1); } else { $values = array_slice($args, 0, $num_fields); $args = array_slice($args, $num_fields); } $sql = ''; for ($i = 0; $i < $num_fields; ++$i) { if ($sql != '') { $sql .= ', '; } $sql .= $columns[$i] . ' = "' . enc_sql($values[$i]) . '"'; } $sql = "UPDATE {$table} SET {$sql}"; # if there's any more arguments if ($args) { $where = $args[0]; $args = array_slice($args, 1); $sql .= ' '; # any left for where claus arguments? if ($args) { $sql .= _db_printf($where, $args); } else { $sql .= $where; } } db_send_query($sql); }
function enc_jsdq($str) { $str = enc_sql($str); $str = str_replace("\n", "\\n", $str); return str_replace("\r", "\\r", $str); }