"; echo addslashes($str) . " This is safe in a database query.";