http://www.w3.org/ns/prov#value | - If you jumble the SQL and data together in once call then you must use mysqli_real_escape_string on any of the data which can validly contain a character that might be misinterpreted as part of the SQL rather than as part of the data - for example any field that is allowed to contain an apostrophe such as a surname field.
|