<div>
change your code to<br />
<br />

<pre><code class="code-1 nolinks" id="code-20-41791862-1"><span> Set MM_editCmd = Server.CreateObject (&quot;ADODB.Command&quot;)</span>
<span>    MM_editCmd.ActiveConnection = MM_bluedot_STRING</span>
<span>    MM_editCmd.CommandText = &quot;UPDATE dbo.AdminChecklist SET Docname = ?, Docfrom = ? WHERE docid = ?&quot; </span>
<span>    MM_editCmd.Prepared = true</span>
<span>    MM_editCmd.Parameters.Append MM_editCmd.CreateParameter(&quot;param1&quot;, 202, 1, 100, (clean(Request.Form(&quot;Docname&quot;)))) ' adVarWChar</span>
<span>    MM_editCmd.Parameters.Append MM_editCmd.CreateParameter(&quot;param2&quot;, 202, 1, 150, Request.Form(&quot;Docfrom&quot;)) ' adVarWChar</span>
<span>    MM_editCmd.Parameters.Append MM_editCmd.CreateParameter(&quot;param3&quot;, 5, 1, -1, MM_IIF(Request.Form(&quot;MM_recordId&quot;), Request.Form(&quot;MM_recordId&quot;), null)) ' adDouble</span>
<span>    MM_editCmd.Execute</span>
</code></pre>
</div>


<div>
Seems the function is missing code to replace the double quotes &nbsp;:$ &nbsp; (&quot;) &nbsp;can this be added?<br />
<br />

<pre><code class="code-10 nolinks" id="code-20-41791866-1"><span>function clean( str )</span>
<span>    if str &lt;&gt; &quot;&quot; and not isNull( str ) then</span>
<span>        str = Replace( str, &quot;&lt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&gt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;&quot;, &quot;&amp;amp;&quot; )</span>
<span>		str = Replace( str, &quot;'&quot;, &quot;&amp;apos;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;quot;&quot;, &quot;\&quot;&quot;&quot; ) </span>
<span>		str = Replace( str, &quot;&amp;amp;apos;&quot;, &quot;'&quot; )</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(156), &quot;&quot; )    'replaces left smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(157), &quot;&quot; )    'replaces right smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(153), &quot;&quot; )    'replaces left smart apostrophe</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(152), &quot;&quot; )    'replaces right smart apostrophe</span>
<span>    end if                </span>
<span>    clean = str</span>
<span>end function</span>
</code></pre>
</div>


<div>
if str &lt;&gt;&nbsp;&quot;&quot; and not isNull( str ) then<br />
<b> &nbsp; &nbsp; &nbsp; &nbsp; str = Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot;&nbsp;)</b><br />
&nbsp; &nbsp; &nbsp; &nbsp; str = Replace( str, &quot;&lt;&quot;, &quot;&quot;&nbsp;)
</div>


<div>
I now have this <br />
<br />

<pre><code class="code-10 nolinks" id="code-20-41791877-1"><span>function clean( str )</span>
<span>    if str &lt;&gt; &quot;&quot; and not isNull( str ) then</span>
<span>	    str = Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot; ) </span>
<span>        str = Replace( str, &quot;&lt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&gt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;&quot;, &quot;&amp;amp;&quot; )</span>
<span>		str = Replace( str, &quot;'&quot;, &quot;&amp;apos;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;quot;&quot;, &quot;\&quot;&quot;&quot; ) </span>
<span>		str = Replace( str, &quot;&amp;amp;apos;&quot;, &quot;'&quot; )</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(156), &quot;&quot; )    'replaces left smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(157), &quot;&quot; )    'replaces right smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(153), &quot;&quot; )    'replaces left smart apostrophe</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(152), &quot;&quot; )    'replaces right smart apostrophe</span>
<span>    end if                </span>
<span>    clean = str</span>
<span>end function</span>
</code></pre>
<br />
With the code above the &quot;&nbsp;are removed instead of replaced for their unicode characters. So it dissapears from the page.
</div>


<div>
str = Replace( str, &quot;&quot;&quot;&quot;, &quot;&amp;quot;&quot; )
</div>


<div>
If you are trying to ensure that a string will always display correctly in HTML, what about trying the equivalent of HttpServerUtility.HtmlEnco<wbr />de?
</div>


<div>
The last note from bigmonty didn't work it replaced the &quot;&nbsp;with &nbsp;&amp;quot; &nbsp; on the page.<br />
<br />
This is what I got <br />
<br />

<pre><code class="code-1 nolinks" id="code-20-41792153-1"><span>Birth certificate quote ' &amp; &amp;quot; dbl quote</span>
</code></pre>
<br />
Brad: Not sure how to do that
</div>


<div>
You can use Server.HTMLEncode but then you would have to decode the data, &nbsp;and there isn't any built in function to do that. <br />
<br />
Why do you need to remove the quotes? Are you displaying the data in a text field? If so try this :<br />
<br />
str = Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot;&nbsp;)
</div>


<div>
I tried that but didn't work &nbsp;:( &nbsp;it still saves one &quot;&nbsp;in the DB and anything after that doesn't show.<br />
<br />
In the DB it shows as: &nbsp; <br />
<br />

<pre><code class="code-1 nolinks" id="code-20-41792175-1"><span>Birth certificate  dbl &quot;&quot; here</span>
</code></pre>
</div>


<div>
Any ideas on how to replace the quotes with the UTF-8 character ? &nbsp;I still have an issue when a &nbsp;user types quotes in a field and then wants to update it instead of showing the text between the quotes the field shows the data up to before the quotes and nothing after.
</div>


<div>
do you want to just be able to display quotes in a text field? if so, then I would save the data AS IS in the database, then when you go to display it, simply double up the quotes, like so:<br />
<br />
&lt;%<br />
str = rs(&quot;fieldFromDbThatContain<wbr />sQuotes&quot;)<br />
%&gt;<br />
&lt;input type=&quot;text&quot; name=&quot;fld1&quot; id=&quot;fld1 value=&quot;&lt;%=Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot;&nbsp;)%&gt;&quot; /&gt;<br />
<br />
this'll allow you to display the data with quotes, and not have to worry about changing the actual data
</div>


<div>
I'll give that. Try. Why is data not displayed after quotes ?
</div>


<div>
it's being display because it's considered invalid html, as the first quote that appears in the VALUE of the input field tells the browser that it's done parsing that attribute. <br />
<br />
For example, let's say this is your text input field:<br />
<br />
&lt;input type=&quot;text&quot; name=&quot;fld1&quot; id=&quot;fld1 value=&quot;&quot; /&gt;<br />
<br />
now, you want to add the value, which is:<br />
<br />
Aleks is a &quot;web ninja&quot;!<br />
<br />
ASP would parse it out to be:<br />
<br />
&lt;input type=&quot;text&quot; name=&quot;fld1&quot; id=&quot;fld1 value=<b>&quot;Aleks is a &quot;</b>web ninja&quot;!&quot; /&gt;<br />
<br />
I bolded out the part that would be considered valid, which is right up to the 2nd quote. Doubling up the quote tells the browser that the quotes surrounding &quot;web ninja&quot; are part of the actual VALUE, and not part of the html markup.<br />
<br />
Does that make sense?
</div>


<div>
It does. So how do all websites approach this issue. Since users can type quotes on any field ?
</div>


<div>
most sites use some form of the solution I provided above. Others will use built in encoding functions supported by the server side language (in ASP, it would be Server.HTMLEncode). Another method would be to replace each quote with &quot;&amp;quot;&quot; (without the quotes). Server.HTMLEncode may work here for you, I usually stay away from it as it will encode other characters in ways that you may not mean to.
</div>


<div>
I tried to replace with &amp;quot; &nbsp;but it didn't work. it did save &nbsp;&amp;quot; &nbsp;in the DB but the it displayed &amp;quot; on the ASP page instead of the quotes. Did I miss doing something else ? &nbsp;I can send the whole page code if needed.
</div>


<div>
building on my solution above, let's try this:<br />
<br />
str = rs(&quot;fieldFromDbThatContain<wbr />sQuotes&quot;)<br />
str = Replace( Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot;&nbsp;), &quot;&amp;quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot;&nbsp;)<br />
<br />
Also, do not save your data in your database in UTF-8 format, you'll may run into problems down the line
</div>


<div>
Some of my pages do have this code at the top of the page in order to work properly. <br />
<br />

<pre><code class="code-1 nolinks" id="code-20-41794343-1"><span>&lt;%</span>
<span>Response.ContentType = &quot;text/html&quot;</span>
<span>Response.AddHeader &quot;Content-Type&quot;, &quot;text/html;charset=UTF-8&quot;</span>
<span>Response.CodePage = 65001</span>
<span>Response.CharSet = &quot;UTF-8&quot;</span>
<span>%&gt;</span>
</code></pre>
<br />
Ill try the code above, but that means I would have to add that code to a lot of pages. Since users can add quotes pretty much anywhere on any field.
</div>


<div>
for testing purposes, try the code I just sent. If it works, add it to your Clean*( function and that should resolve the issue
</div>


<div>
I have this as the function now: <br />
<br />

<pre><code class="code-10 nolinks" id="code-20-41794365-1"><span>function clean( str )</span>
<span>    if str &lt;&gt; &quot;&quot; and not isNull( str ) then</span>
<span>		str = Replace( Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot; ), &quot;&amp;quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot; )</span>
<span>        str = Replace( str, &quot;&lt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&gt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;&quot;, &quot;&amp;amp;&quot; )</span>
<span>		str = Replace( str, &quot;'&quot;, &quot;&amp;apos;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;quot;&quot;, &quot;\&quot;&quot;&quot; ) </span>
<span>		str = Replace( str, &quot;&amp;amp;apos;&quot;, &quot;'&quot; )</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(156), &quot;&quot; )    'replaces left smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(157), &quot;&quot; )    'replaces right smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(153), &quot;&quot; )    'replaces left smart apostrophe</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(152), &quot;&quot; )    'replaces right smart apostrophe</span>
<span>    end if                </span>
<span>    clean = str</span>
<span>end function</span>
</code></pre>
<br />
Where do I put this piece of code ? <br />
<br />

<pre><code class="code-1 nolinks" id="code-20-41794365-2"><span>str = rs_document(&quot;Docname&quot;)</span>
</code></pre>
</div>


<div>
put it at the end, right after line 13
</div>


<div>
Ok. but ... that line only applies to this one page. Not the entire system so ... here is the relevant code for this page, perhaps this helps.<br />
included is the file to the script we currently have to clean the data. <br />
I added the line at the bottom as recommended.<br />
<br />

<pre><code class="code-10 nolinks" id="code-20-41794398-1"><span>function clean( str )</span>
<span>    if str &lt;&gt; &quot;&quot; and not isNull( str ) then</span>
<span>        str = Replace( str, &quot;&lt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&gt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;&quot;, &quot;&amp;amp;&quot; )</span>
<span>		str = Replace( str, &quot;'&quot;, &quot;&amp;apos;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;quot;&quot;, &quot;\&quot;&quot;&quot; ) </span>
<span>		str = Replace( str, &quot;&amp;amp;apos;&quot;, &quot;'&quot; )</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(156), &quot;&quot; )    'replaces left smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(157), &quot;&quot; )    'replaces right smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(153), &quot;&quot; )    'replaces left smart apostrophe</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(152), &quot;&quot; )    'replaces right smart apostrophe</span>
<span>		str = Replace( Replace( str, &quot;&quot;&quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot; ), &quot;&amp;quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot; )</span>
<span>    end if                </span>
<span>    clean = str</span>
<span>end function</span>
</code></pre>
<a href="https://filedb.experts-exchange.com/incoming/2016/09_w38/1116199/code-utf8.txt" target="_blank" class="file-inline" title="code (6 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>code-utf8.txt</a>
</div>


code-utf8.txt

<div>
it shouldnt matter, as you would only need to call the clean() function when you're loading up form fields, otherwise you would use the value in the database
</div>


<div>
I am confused :$ &nbsp;... The clean function is now updated. How to display the code and clean it on the page now ? &nbsp;(Code for the page is attached).
</div>


<div>
where exactly are you trying to display the data? Inside a field or just on the page, like in a DIV or other html element?
</div>


<div>
a form field. <br />

<pre><code class="code-1 nolinks" id="code-20-41794471-1"><span>&lt;input name=&quot;Docname&quot; type=&quot;text&quot; class=&quot;form-control&quot; id=&quot;Docname&quot; value=&quot;&lt;%=(rs_document.Fields.Item(&quot;Docname&quot;).Value)%&gt;&quot; maxlength=&quot;150&quot;&gt;</span>
</code></pre>
there.
</div>


<div>
well, unless you're using some kind of specialized editor, like TinyMCE or one of its equivalents, you're not going to be able to stylize text in a standard text field....
</div>


<div>
Right. So what happens if the user enters something like: &nbsp;<br />
<br />
Documents for &quot;Alien&quot; contact <br />
<br />
and hits 'save' ? &nbsp; the text will save as such in the database, then the page reloads and it reads:<br />
<br />
Documents for
</div>


<div>
so it's saving correctly, you just need to <a href="https://www.experts-exchange.com/questions/28968874/replace-quotes-with-UTF-8-character.html?anchorAnswerId=41794177#a41794177" rel="ugc">double up the quotes</a> when writing the value of that field into the VALUE attribute for the field.
</div>


<div>
Is there a way we can build that into a function ? &nbsp;:) &nbsp; I think this should be separate from the 'clean' function don't you think ? &nbsp;this way we apply the new function to any field that would need this done.
</div>


<div>
let's first make sure that's what it is. Test it out on a couple of fields, verify it works, then we'll make a more global function
</div>


<div>
I am ok with that. I am just a little lost. I added that one line to the clean function. Should i remove it and if so where do I add the code in the asp file ? <br />
Can we start this from scratch ? &nbsp;... :)
</div>


<div>
let's do the following as a test. create your text input like so:<br />
<br />
&lt;input name=&quot;Docname&quot; type=&quot;text&quot; class=&quot;form-control&quot; id=&quot;Docname&quot; value=&quot;&lt;%=(Replace( rs_document.Fields.Item(&quot;D<wbr />ocname&quot;).V<wbr />alue, &quot;&quot;&quot;&quot;, &quot;&quot;&quot;&quot;&quot;&quot;&nbsp;))%&gt;&quot; maxlength=&quot;150&quot;&gt;<br />
<br />
the quotes should now appear
</div>


<div>
I tried but the text still gets cut off. <br />
<br />
So I added this to the clean function: &nbsp; str = Replace( str, &quot;&quot;&quot;&quot;, &quot;''&quot; ) <br />
it replaces the quotes with two single quotes &nbsp;:$ &nbsp;looks close to the quotes
</div>


<div>
Ummm .. it did work &nbsp;:) &nbsp;thanks. that's the solution!
</div>


<div>
Sorry for the back and forth ...
</div>


<div>
<div class="content wysiwyg-content">
I have an ASP page that updates information into my SQL 2008R2 database.<br />
The use of quotes and other characters is causing issues so I have a function that replaces then with their Unicode character, below is the function:<br />
<br />

<pre><code class="code-10 nolinks" id="code-10-28968874-1"><span>function clean( str )</span>
<span>    if str &lt;&gt; &quot;&quot; and not isNull( str ) then</span>
<span>        str = Replace( str, &quot;&lt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&gt;&quot;, &quot;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;&quot;, &quot;&amp;amp;&quot; )</span>
<span>		str = Replace( str, &quot;'&quot;, &quot;&amp;apos;&quot; )</span>
<span>        str = Replace( str, &quot;&amp;quot;&quot;, &quot;\&quot;&quot;&quot; ) </span>
<span>		str = Replace( str, &quot;&amp;amp;apos;&quot;, &quot;'&quot; )</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(156), &quot;&quot; )    'replaces left smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(157), &quot;&quot; )    'replaces right smart quote</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(153), &quot;&quot; )    'replaces left smart apostrophe</span>
<span>		str = Replace( str, chr(226) &amp; chr(128) &amp; chr(152), &quot;&quot; )    'replaces right smart apostrophe</span>
<span>    end if                </span>
<span>    clean = str</span>
<span>end function</span>
</code></pre>
<br />
I am trying to apply this into the ASP code but I am doing something wrong that is not working. Here is what I have. I could use some help. <br />
* This is just part of the code, but the part I think is relevant to the issue.<br />
<br />

<pre><code class="code-1 nolinks" id="code-10-28968874-2"><span> Set MM_editCmd = Server.CreateObject (&quot;ADODB.Command&quot;)</span>
<span>    MM_editCmd.ActiveConnection = MM_bluedot_STRING</span>
<span>    MM_editCmd.CommandText = &quot;UPDATE dbo.AdminChecklist SET Docname = ?, Docfrom = ? WHERE docid = ?&quot; </span>
<span>    MM_editCmd.Prepared = true</span>
<span>    MM_editCmd.Parameters.Append MM_editCmd.CreateParameter(&quot;param1&quot;, 202, 1, 100, (Request.Form(clean(&quot;Docname&quot;)))) ' adVarWChar</span>
<span>    MM_editCmd.Parameters.Append MM_editCmd.CreateParameter(&quot;param2&quot;, 202, 1, 150, Request.Form(&quot;Docfrom&quot;)) ' adVarWChar</span>
<span>    MM_editCmd.Parameters.Append MM_editCmd.CreateParameter(&quot;param3&quot;, 5, 1, -1, MM_IIF(Request.Form(&quot;MM_recordId&quot;), Request.Form(&quot;MM_recordId&quot;), null)) ' adDouble</span>
<span>    MM_editCmd.Execute</span>
</code></pre>
</div>
</div>


I have an ASP page that updates information into my SQL 2008R2 database.
The use of quotes and other characters is causing issues so I have a function that replaces then with their Unicode character, below is the function:

(CODE)

I am trying to apply this into the ASP code but I am doing something wrong that is not working. Here is what I have. I could use some help. 
* This is just part of the code, but the part I think is relevant to the issue.

(CODE)

replace quotes with UTF-8 character

Web development can range from developing the simplest static single page of plain text to the most complex web-based internet applications, electronic businesses, and social network services using a wide variety of languages and standards, including the familiar HTML, JavaScript and jQuery, ASP and ASP.NET, PHP, ColdFusion, CSS, PHP, Flex and Flash, but also the implementation of a broad list of standards including XML, WSDL, SSDL, VoiceXML and many more.

Web Languages and Standards

Microsoft SQL Server is a suite of relational database management system (RDBMS) products providing multi-user database access functionality.SQL Server is available in multiple versions, typically identified by release year, and versions are subdivided into editions to distinguish between product functionality. Component services include integration (SSIS), reporting (SSRS), analysis (SSAS), data quality, master data, T-SQL and performance tuning.

Microsoft SQL Server

Web development includes all aspects of presenting content on intranets and the Internet, including delivery development, protocols, languages and standards, server software, browser clients, databases and multimedia generation.

Web Development

Active Server Pages (ASP) is Microsoft’s first server-side engine for dynamic web pages. ASP’s support of the Component Object Model (COM) enables it to access and use compiled libraries such as DLLs. It has been superseded by ASP.NET, but will be supported by Internet Information Services (IIS) through at least 2022.

SQL (Structured Query Language) is designed to be used in conjunction with relational database products as of a means of working with sets of data. SQL consists of data definition, data manipulation, and procedural elements. Its scope includes data insert, query, update and delete, schema creation and modification, and data access control.