php mysql injection bypass?

[bluespirit]

simply, is there a way to bypass that?

Code: [Select]

$login = mysql_real_escape_string(GetFromPost('login'));

[Spacecow]

Do you even SQLi? But seriously though, have you looked up what the function actually does and looked at ways to get around things like that or is this a "Please spoon feed me, I don't actually know what I'm doing " post? Since it appears more like the latter is true I will simply give u a link and tell you that coming on a forum to beg for help is a good way to make a shit impression. Without further waiting I present to you the manual http://php.net/manual/en/function.mysql-real-escape-string.php