https://www.php-resource.de/forum/php-developer-forum/40078-mysql_escape_string-oder-htmlentities-bei-db-eintr%C3%A4gen