dqxafj6830 2017-08-22 09:18
浏览 64
已采纳

PHP:WHERE子句附近的查询(MySQL)出错

I am trying to Insert data from a form with the use of a query. The query ( below ) has a WHERE clause to pick a position from visitorsystem.position.

 $query = "INSERT INTO visitorsystem.employee(idNumber,name,surname,position,email)
                                 VALUES ('$idNumber','$name','$surname',SELECT positionid FROM visitorsystem.position WHERE position LIKE '%$position%','$email')";

When executed the following error is given. I have tried adding quotes and single quotes around the SELECT...WHERE clause with no luck. Any ideas if the problem is with the query itself or the SELECT...WHERE clause ?

Error in query: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '','fdsf',SELECT positionid FROM visitorsystem.position WHERE position LIKE '%inf' at line 2

  • 写回答

2条回答 默认 最新

  • dongshi1880 2017-08-22 09:22
    关注

    First of all, learn about prepared Statements to prevent SQL injection.

    Second you should add all values to the select Statement:

    query = "INSERT INTO visitorsystem.employee(idNumber,name,surname,position,email)
  SELECT $idNumber,'$name','$surname',positionid,'$email' FROM visitorsystem.position WHERE position LIKE '%$position%'";

    Also you do not need singlequotes around $idNumber, because it is numeric

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 c语言怎么用printf(“\b \b”)与getch()实现黑框里写入与删除?
  • ¥20 怎么用dlib库的算法识别小麦病虫害
  • ¥15 华为ensp模拟器中S5700交换机在配置过程中老是反复重启
  • ¥15 java写代码遇到问题,求帮助
  • ¥15 uniapp uview http 如何实现统一的请求异常信息提示?
  • ¥15 有了解d3和topogram.js库的吗?有偿请教
  • ¥100 任意维数的K均值聚类
  • ¥15 stamps做sbas-insar,时序沉降图怎么画
  • ¥15 买了个传感器,根据商家发的代码和步骤使用但是代码报错了不会改,有没有人可以看看
  • ¥15 关于#Java#的问题,如何解决?