php sql-injection mysql-real-escape-string

I need to secure this PHP code from SQL injection attacks

Possible Duplicate:
Best way to stop SQL Injection in PHP

I need to secure this code from SQL injection attacks, possibly using mysql_real_escape_string. Where and how do I apply it?

<?php
mysql_select_db("database");

$sql="INSERT INTO email (address) VALUES ('$_POST[address]')";

if (!mysql_query($sql))
  {
  die('Error: ' . mysql_error());
  }
echo "<center>THANK YOU!</center>";

?>

Solution

You should be able to just wrap your post value in mysql_real_escape_string():

$address = mysql_real_escape_string($_POST[address]);

$sql="INSERT INTO email (address) VALUES ('$address')";

How to avoid empty elements by splitting a string on one or more consecutive spaces?
How to split a multiline string on newlines?
Hiw to limit the number of elements produced by explode()?
Explode string only once on first occurring newline character
Split a string only on the first of its multiple delimiters to produce a 2-element array
How to Resolve the Update function for single view page laravel -11 crud
Reformat a string with two sets of delimiters into more human-readable, multiline text
How to make all array keys the same as their respective value?
Auth guard [:api] is not defined?
Create an array of each character and its following character from an input string
How to reindex an array after extracted from a larger array?
Isolate a column of values from an array of objects
Use an array of words to match and an array of replacements to perform replacements on a string
Calculate a new column and remove other columns within nested objects of a multidimensional object
Woocommerce mini-cart.php doesnt override the template
PECL/Memcache and PECL/Memcached
Parse an array of delimited values into a flat, associative array
Parse a text file into an array of associative arrays by splitting on semicolons then by equals signs
How to access a deeply nested value in a multidimensional array?
Can variables declared inside of a function's scope be accessed in the global scope?
Loop only retains last item iterated
How to access the second level values of a 2d array?
How can I crawl a page for data as if it's logged in if I have the login credentials?
Run function controller when date expired
How to echo XML file in PHP
Handling Exceptions inside Pipeline
CodeIgniter 4 Error stating SetScheme requires string but null given. Even though already passing a string
Use the symfony/mailer component without the symfony framework
rewrite my url using htaccess
Can't start Laravel, I get "Base table or view not found" error