within my web app there is no doubt the posibility for user's to enter an apostraphe. This will btreak the sql statment if it's not escaped. Will mysqli prepared statements escape this for me?
Will mysqli prepared statements escape this for me?
Yup, that's what they're for.