Throughout the noted pages and scattered in a few other places, the above four are referred to as functions, when technically they are considered language constructs. While minor, it should still be clarified. All the functionality and examples are accurate, just some terminology clarifications.
When describing the function mysql_real_escape_string(), the following note was included:
Note: Performs the same functionality as addslashes().
While they are practically identical in their behavior, this is an oversimplification of the extra strength of mysql_real_escape_string(). At this point, I will pass on the following blog post that provides some extra insight into the comparison of the two variables:addslashes() Versus mysql_real_escape_string() by Chris Shiflett. I was not previously aware of this difference and security loophole.
The opening sentence for the Global Variables chapter reads as follows:
While some global variables can be created through the use of
define(), some are reserved because of a special function, giving access to
different types of data.
Technically, the define() function creates a constant that is available globally, as is described properly as part of the function on page 11. Therefore, the sentence would be better phrased as follows:
While some constants can be made available globally through the use of
define(), some are reserved because of a special function, giving access to
different types of data.
