dqxafj6830 2017-08-22 09:18
浏览 64
已采纳

PHP:WHERE子句附近的查询(MySQL)出错

I am trying to Insert data from a form with the use of a query. The query ( below ) has a WHERE clause to pick a position from visitorsystem.position.

 $query = "INSERT INTO visitorsystem.employee(idNumber,name,surname,position,email)
                                 VALUES ('$idNumber','$name','$surname',SELECT positionid FROM visitorsystem.position WHERE position LIKE '%$position%','$email')";

When executed the following error is given. I have tried adding quotes and single quotes around the SELECT...WHERE clause with no luck. Any ideas if the problem is with the query itself or the SELECT...WHERE clause ?

Error in query: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '','fdsf',SELECT positionid FROM visitorsystem.position WHERE position LIKE '%inf' at line 2

  • 写回答

2条回答 默认 最新

  • dongshi1880 2017-08-22 09:22
    关注

    First of all, learn about prepared Statements to prevent SQL injection.

    Second you should add all values to the select Statement:

    query = "INSERT INTO visitorsystem.employee(idNumber,name,surname,position,email)
      SELECT $idNumber,'$name','$surname',positionid,'$email' FROM visitorsystem.position WHERE position LIKE '%$position%'";
    

    Also you do not need singlequotes around $idNumber, because it is numeric

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 cplex运行后参数报错是为什么
  • ¥15 之前不小心删了pycharm的文件,后面重新安装之后软件打不开了
  • ¥15 vue3获取动态宽度,刷新后动态宽度值为0
  • ¥15 升腾威讯云桌面V2.0.0摄像头问题
  • ¥15 关于Python的会计设计
  • ¥15 聚类分析 设计k-均值算法分类器,对一组二维模式向量进行分类。
  • ¥15 stm32c8t6工程,使用hal库
  • ¥15 找能接spark如图片的,可议价
  • ¥15 关于#单片机#的问题,请各位专家解答!
  • ¥15 博通raid 的写入速度很高也很低