php - Search DB through MYSQLi -


i have 1 simple question can't understand why doesn't work. i'm trying querying db through mysqli , if hard code variable works perfect, if try make dynamic (via input box) displays nothing.

here code:

if(isset($_get['search'])) {     $searchbyinput = $_get['search']; }  $query = 'select * table vin="$searchbyinput"';  if ($stmt = $mysqli->prepare($query)) {     $stmt->execute();      $result = $stmt->get_result();      if($result->num_rows > 0) {         while($row = $result->fetch_assoc()) {             //display table         }     } }

if i'm 'echo'ing variable inside if statement, displays right value reason doesn't want execute query correctly variable.

i hope can point me in right direction.

thank you

you should use single quoted strings inside query make valid, , should (conveniently) use double quote expand variables inside string in first place:

$query = "select * table vin='$searchbyinput'";

even better, let mysql handle binding parameter. solves sql injection vulnerabilities mentioned in comments:

$searchbyinput = ''; if(isset($_get['search'])) {     $searchbyinput = $_get['search']; }  $query = 'select * table vin=?';  if ($stmt = $mysqli->prepare($query)) {     $stmt->bind_param('s', $searchbyinput);      $stmt->execute();      $result = $stmt->get_result();      if($result->num_rows > 0) {         while($row = $result->fetch_assoc()) {             //display table         }     } }

Comments

Post a Comment

Popular posts from this blog

javascript - Using jquery append to add option values into a select element not working -

i'm looking dynamically populate select element names of items stored array. for reason it's not working , i'm not sure why. html: <div class="col-md-4 col-md-offset-4"> <select class="select1"> </select> , <select class="select2"> </select> </div> note i'm using bootstrap layout. here's jquery i'm using try , populate ".select1" jquery: select: function() { $.each(state.greens, function(index, value) { $(".select1").append("<option value =' " + index + " '>" + state.greens[index].name + "</option>"); }); } note function 'select' stored within object called 'display'. state.greens name of array i'm trying access. so @ end of html page call display.select(); call function. no error messages showing in console. also, saw question: appending
Read more

Android soft keyboard reverts to default keyboard on orientation change -

i'm building android soft keyboard , can't seem fix bug - have arabic , qwerty keyboard , when rotate device on qwerty keyboard (or arabic shift), it's if program has "restarted" , becomes arabic keyboard without shift. the onsaveinstancestate(bundle savedinstancestate) not work because application not extend activity inputmethodservice . i put following in android manifest android:configchanges="keyboard|keyboardhidden|orientation" android:windowsoftinputmode="stateunchanged|adjustresize"> i tried using @override public void onconfigurationchanged(configuration newconfig) { super.onconfigurationchanged(newconfig); log.i(mydebug, "config changed " + currentkeyboard.equals(qwerty)); } however, currentkeyboard.equals(qwerty)) results false , made sure true before orientation change. any appreciated. i think applications fault. if application restarting on orientation change
Read more

Rendering JButton to get the JCheckBox behavior in a JTable by using images does not update my table -

i rendering jbutton image on simulate jcheckbox behavior. why don't let jtable render jcheckbox? because need bigger checkboxes , there's no way can resize them (as far know). so, have own table cell renderer , editor. both renders jbutton , checkbox images on them. trying change image checked image unchecked image (or vice versa) , update cell value (boolean true or false). however, reason, getcelleditorvalue() not update table. so, release mouse, value goes original one. any appreciated! lot! public class tableexample extends jframe { jscrollpane pane; jpanel panel; jtable table; object[][] data; mytablemodel tm; renderer buttoncolumn; public tableexample(object[][] data) throws ioexception { string[] columns = {"column#1", "column#2", "column#3", "column#4", "column#5", "column#6"}; this.data = data; this.setpreferredsize(new dimension(700, 500));
Read more