I am not able to insert id and name in myTable MySQL table by using following PHP syntax. id is integer field and name is varchar field.
$query="INSERT INTO myTable (id, name) VALUES (".$_SESSION["id"].", ".$_SESSION["name"].");";
Is there something wrong with above syntax? As per me its right because if insert hardcoded values, those are inserted fine.
分享 Yes, you need to use single quotes for name
$query="INSERT INTO myTable (id, name) VALUES (" . $_SESSION["id"] . ", '" . $_SESSION["name"]."');";
Also, please try not to contstruct the queries by hand using string concatenation/substitution. It can be dangerous if your $_SESSION (somehow) contains content that can manipulate queries completely.
Read about SQL Injection, and what PHP offers.
分享
