Ensure that textbox entries don't interfere with database operation.

Entries such as ', ", \, etc, may have a negative effect on the  string used in SQL. Work around this, to prevent unexpected errors.