This question already has an answer here:
I am using mysql_real_escape_string and strip_tags as follows:
strip_tags(mysql_real_escape_string($postvariable));
I just want to know if this makes sense. Will strip_tags still work, aka remove tags and html tags after the string has been filtered by mysql_real_escape_string ?
</div>
Both are different and use are different as well, you can use them like
strip_tags($postvariable); //remove html tags
mysql_real_escape_string($postvariable); //it escapes special characters in a string