i have a form that is used to set a search term to a php variable VIA _GET so for example if the user typed cat the url would say ?search=cat
Here is the PHP variable that will be used in the SQL query
$search = 'CustomerAccountName LIKE '%' . $_GET['search'] . '%'';
When echoed this produces CustomerAccountName LIKE '%cat%' which is valid and works when using the query editor however when i try to place the $search variable in to the query in php i get this error
Warning: odbc_exec(): SQL error: [Microsoft][ODBC SQL Server Driver][SQL Server]Incorrect
syntax near '&'., SQL state 37000 in SQLExecDirect
any help would be much appreciated