I am pulling data from a database using mysqli and PHP.
This works OK but I get a random character (black question mark) replacing apostrophes in words, so I thought I could use the htmlspecialchars() function to have them display properly, but it doesn't work.
So my code looks like this
while($row = $result->fetch_assoc())
{
$desc = htmlspecialchars($row['description'], ENT_QUOTES);?>
<div class="timeline-key">
<div class="fluid key-content">
<p><?php echo $desc?></p>
</div>
</div><?php
}
Now any record in the database which contains an apostrophe $desc prints out nothing, all other records print out OK?
Now if I try the exact same come on a string that is not being pulled from the database it displays it OK?
From the website you linked, it is obvious that the page itself uses UTF-8 for character encoding (<meta charset="UTF-8">). It seems that the database from which you fetch your data uses a character encoding that is not equal to the ini_get("default_charset") value. If you get the encoding wrong, htmlspecialchars will return the empty string, which is what you're seeing here.
The solution is to be consistent in (or explicit about) which character encoding you're using. This is a lot simpler when you use one character encoding for everything. Let's use UTF-8 as a good example:
default_charset to UTF-8.Alternatively, you could use a function like mb_convert_encoding to convert the strings between the different character encodings that the browser is expecting, that PHP is assuming, and that MySQL uses to store and serve text.