sql准备语句获取结果到php变量[关闭]

What i want is to write this code with prepared statement:

if (mysqli_num_rows(mysqli_query($link,"select name from accounts where name='$username'"))==1)
        {
            // some actions
        }

Well, how to do that?

I know how to make a prepared "INSERT INTO" statement because I don't need to get the mysqli_query result into a php variable, but how to save a "SELECT" prepare statement to run mysqli_num_rows($result) right after?

EDIT: What I want to do is to execute a mysqli_query() with prepared statements while saving the result into a php $result variable. how to do that?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongshuo9350 2013-08-28 21:49
关注
should never EVER chain database operations like that. You are assuming that the query will always succeed. This is BAD practice. Never assume success. Always assume the operations will fail, and treat success as a pleasant surprise.

Since you're daisy-chaining the DB calls like that, you never actually capture the result handle that mysqli_query() will return, so in effect you're running the query and then throwing away its results.

You should have something more like

$result = mysqli_query($link, "....") or die(mysqli_error()); if (mysqli_num_rows($result)) == 1) { $row = mysqli_fetch_assoc($result); $anem = $row['name']; }

And unless you've taken steps not shown in this code, you are vulnerable to SQL injection attacks.

As for the prepared statement stuff:

$stmt = mysqli_prepare($link, 'SELECT ... WHERE name=?'); mysqli_stmt_bind_param($stmt, 's', $name); mysqli_stmt_execute($stmt); $rows = mysqli_stmt_num_rows($stmt); mysqli_stmt_bind_result($stmt, $fetched_name); mysqli_stmt_fetch($stmt); // $fetched_name now contains the name from the DB
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

sql准备语句获取结果到php变量[关闭] php sql
2013-08-28 21:42

回答 1 已采纳 should never EVER chain database operations like that. You are assuming that the query will always
将单个SQL SELECT语句查询结果分配给PHP变量 mysql php
2016-10-26 19:16

回答 2 已采纳 Apparently after using var_dump to debug the problem as stated by Chris, the problem was narrowed
PHP+mysql拼接sql语句时遇到的问题请教 mysql php sql
2022-12-27 22:38

回答 1 已采纳拼接末尾的and可以删除。望采纳，谢谢！ <title>test</title> <?php header("Content-Type: text/html;charse
php 获取最后执行的sql,如何获取ThinkPHP框架最后一次执行SQL语句及变量调试
2021-04-12 22:29

温列来的博客这篇文章主要介绍了ThinkPHP框架获取最后一次执行SQL语句及变量调试简单操作,结合实例形式分析了thinkPHP获取最后一次执行SQL语句的getLastSql()及fetchSql()函数以及使用dump方法变量调试、E方法输出错误信息等操作...
PHP准备语句与MySQL会话变量 mysql php
2019-02-04 20:28

回答 2 已采纳 As Bill Karwin said, you can only run one query in a prepared statement. Another way to solve it i
SQL语句中的多个PHP变量的问题 php sql
2014-05-19 14:17

回答 1 已采纳 You are emptying $SC3 in the if condition.
将Oracle SQL语句的值赋给PHP变量 oracle php
2016-06-23 18:49

回答 2 已采纳 Resolved: I had to add [0] after the column: $firstname = $res['firstname'][0];
php sql 赋值给变量赋值吗_php将SQL查询结果赋值给变量的方法
2021-03-22 19:55

韦桂超的博客 php将SQL查询结果赋值给变量的方法发布时间：2020-08-01 14:49:06来源：亿速云阅读：101作者：清晨小编给大家分享一下php将SQL查询结果赋值给变量的方法，相信大部分人都还不怎么了解，因此分享这篇文章给大家学习，...
PHP+MySQL使用SQL语句删除和修改数据无法用变量作为语句条件 mysql php
2020-10-09 23:58

回答 4 已采纳 $select不应带单引号
PHP SQL将Select语句转换为DB Insert的变量 mysql php
2018-05-01 08:13

回答 1 已采纳 Here's how a working example of your code could look like (with some of the suggested changes from
关于php查询sql语句的问题 php 数据库
2022-05-07 13:29

回答 3 已采纳用的orm框架吧。数据库表字段跟类字段对应。
PHP之sql拼接语句
2021-11-04 22:07

反余弦函数的博客 sql拼接语句 select拼接语句 function select($table,$cond=array()){ $sql = "select * from `{$table}` where 1"; if (!empty($cond)){ foreach ($cond as $k=>$v){ if (is_array($v)){ switch ($v[0]){ ...
将PHP变量添加到SQL语句中。不工作 php sql
2012-03-14 23:25

回答 1 已采纳 Assuming $sn holds integer value and don't require escaping, $photo=mysql_query("SELECT A. * FROM
php 循环sql语句,SQL语句循环
2021-03-24 08:19

JHAY的博客一、作用通过sql语句来循环查询数据(也可以单条查询)，支持分页输出二、语法{sqlsql='SQL语句变量'....}{/sql}三、参数参数介绍sqlsql参数只支持变量传递，@#表示数据表前缀；格式如：sql='$sql'，这里的$sql变量...
mysql如何在sql语句中用php变量
2017-05-09 14:43

铁柱同学的博客在框架自带的数据库操作不能满足项目需求的时候，原生的sql语句就像是救命稻草。然而自以为基础的sql 却让我欲仙欲死，眼高手低的坏处。故在此记录一下mysql结合php的例子 1、mysql中加php变量，第一种方法是用中...
没有解决我的问题, 去提问

悬赏问题

¥15 微信会员卡接入微信支付商户号收款
¥15 如何获取烟草零售终端数据
¥15 数学建模招标中位数问题
¥15 phython路径名过长报错不知道什么问题
¥15 深度学习中模型转换该怎么实现
¥15 HLs设计手写数字识别程序编译通不过
¥15 Stata外部命令安装问题求帮助！
¥15 从键盘随机输入A-H中的一串字符串，用七段数码管方法进行绘制。提交代码及运行截图。
¥15 TYPCE母转母，插入认方向
¥15 如何用python向钉钉机器人发送可以放大的图片？

sql准备语句获取结果到php变量[关闭]

1条回答 默认 最新

悬赏问题

1条回答默认最新