是否可以在两个varchar值之间执行

Kund = customer We know that we lack in security in our code but so far that is not the problem and this code will not go on to an public website.

This code sorts out values from an database and puts them in a table. We need to sort the customer S001 and everything between to S176 in a checkbox but we cant get BETWEEN to work with Varchar.

 <!doctype html>
<html>
<head>
<link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css" integrity="sha384-MCw98/SFnGE8fJT3GXwEOngsV7Zt27NXFoaoApmYm81iuXoPkFOJwJ8ERdknLPMO" crossorigin="anonymous">
<link rel="stylesheet" href="css.css">
<link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/morris.js/0.5.1/morris.css">

</head>
<body>

<?php
$servername = "localhost";
$username = "root";
$password = "";
$dbname = "garp";

$conn = new mysqli ($servername, $username, $password, $dbname);
if ($conn->connect_error) {
die("Connection failed: " . $conn->connect_error);
}

/*                                                                                                                                      $query = $_GET['query']; */
$orderkund = $_GET['Orderkundinput']; 
$artikel = $_GET['Artikelinput']; 
$startDate =$_GET['startDate']; 
$endDate =$_GET['endDate'] ;
$kund =$_GET['kund'];
$kund2 =$_GET['kund2'];
$kunds;

$min_length = 0;
$artikelQuery="";
$orderkundQuery="";
$kundQuery="";
$kund2Query="";
$kundsQuery;
if(strlen($artikel) >= $min_length){ 
    $artikel = htmlspecialchars($artikel); 

    $artikel = mysqli_real_escape_string($conn, $artikel);
    $artikelQuery = " AND Artikelnr = '$artikel'";
}

if (strlen($orderkund) >= $min_length){ 
    $orderkund = htmlspecialchars($orderkund); 

    $orderkund = mysqli_real_escape_string($conn, $orderkund);
    $orderkundQuery = " AND OrderKund = '$orderkund'";
}
if(strlen($kund) >= $min_length){ 
    $kund = htmlspecialchars($kund); 

    $kund = mysqli_real_escape_string($conn, $kund);
    $kundQuery = " OR OrderKund = '$kund'";
}
if(strlen($kund2) >= $min_length){ 
    $kund2 = htmlspecialchars($kund2); 

    $kund2 = mysqli_real_escape_string($conn, $kund2);
    $kund2Query = " OR OrderKund = '$kund2'";
}
if(strlen($kunds) >= $min_length){ 
    $kunds = htmlspecialchars($kunds); 

    $kunds = mysqli_real_escape_string($conn, $kunds);
    $kundsQuery = " between 'S176'";
}
if (strlen($startDate) >= $min_length){ 
    $startDate = htmlspecialchars($startDate); 

    $startDate = mysqli_real_escape_string($conn, $startDate);
    $startDateQuery = " AND Orderdatum between '$startDate' ";
}

if (strlen($endDate) >= $min_length){ 
    $endDate = htmlspecialchars($endDate); 

    $endDate = mysqli_real_escape_string($conn, $endDate);
    $endDateQuery = "AND '$endDate'";
}

$query = $artikelQuery.$orderkundQuery.$kundQuery.$kund2Query.$kundsQuery.$startDateQuery.$endDateQuery;
if(strlen($query) >= $min_length){ 
$sql = "SELECT OrderHuvud.Ordernummer ,OrderHuvud.OrderserieIK ,OrderKund ,Fakturakund ,Orderdatum ,Erreferens ,Levereratvarde ,Radnummer ,Artikelnr ,Benamning ,Leveranstid ,Ursprungligtantal ,Levereratantal ,Forspris ,Bruttopris ,Varukostnad FROM garp.OrderHuvud left join garp.OrderRad on OrderHuvud.Ordernummer = OrderRad.Ordernummer where  OrderHuvud.OrderserieIK = 'K'" .$query ;
echo $sql;
$raw_results = $conn->query ($sql);
    $row_cnt = false === $raw_results ? 0 : $raw_results->num_rows;
        echo " <p class='rows'> Numbers of rows loaded: $row_cnt </p>";
    if($row_cnt > 0){
   while($raw_result = mysqli_fetch_array($raw_results)){
   echo "<table class='table'><thead class='thead-light'><tr><th class='col'>".'Ordernummer'."</th><th class='col'>".'OrderserieIK'."</th><th class='col'>".'Orderkund'."</th><th class='col'>".'fakturakund'."</th><th class='col'>".'orderdatum'."</th><th class='col'>".'erreferens'."</th><th class='col'>".'leveratvarde'."</th><th class='col'>".'radnummer'."</th><th class='col'>".'artikelnr'."</th><th class='col'>".'benamning'."</th><th class='col'>".'leveranstid'."</th><th class='col'>".'Ursprungligtantal'."</th><th class='col'>".'Levereratantal'."</th><th class='col'>".'forspris'."</th><th class='col'>".'bruttopris'."</th><th class='col'>".'varukostnad'."</th></tr></thead>";
   echo "<tbody><tr><td>".$raw_result['Ordernummer']."</td><td>".$raw_result['OrderserieIK']."</td><td>".$raw_result['OrderKund']."</td><td>".$raw_result['Fakturakund']."</td><td>".$raw_result['Orderdatum']."</td><td>".$raw_result['Erreferens']."</td><td>".$raw_result['Levereratvarde']."</td><td>".$raw_result['Radnummer']."</td><td>".$raw_result['Artikelnr']."</td><td>".$raw_result['Benamning']."</td><td>".$raw_result['Leveranstid']."</td><td>".$raw_result['Ursprungligtantal']."</td><td>".$raw_result['Levereratantal']."</td><td>".$raw_result['Forspris']."</td><td>".$raw_result['Bruttopris']."</td><td>".$raw_result['Varukostnad']."</td></tr></tbody></table>";

   }
    }

    else{
   echo "No return";
    }
}
else{
    echo "Minimum length is ".$min_length;
}
$query = substr($query, 4);
$sql2 = "SELECT OrderKund,Artikelnr, SUM(Forspris) as Forspris,SUM(Levereratantal) as Levereratantal FROM orderhuvud
left JOIN orderrad on orderhuvud.Ordernummer = orderrad.Ordernummer
 where ". $query ." GROUP BY OrderKund,Artikelnr";
$result = mysqli_query($conn, $sql2) or die(mysqli_error($conn));
while($row = mysqli_fetch_array($result)){

    echo "<div class='continer'><table class='table'><thead class='thead-light'><tr><th class='col'>".'OrderKund'."</th><th class='col'>".'Artikelnr'."</th><th class='col'>".'Forspris'."</th><th class='col'>".'levereratantal'."</th></tr></thead></div>";
    echo "<div class='continer'><tbody><tr><td>".$row['OrderKund']."</td><td>".$row['Artikelnr']."</td><td>".$row['Forspris']."</td><td>".$row['Levereratantal']."</td></tr></tbody></table></div>";   
}
    ?>
</body>
</html>

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongzheng3113 2019-02-18 11:10
关注
I think this part is responsible for not giving the rows you expect.

OR orderkund = 'S001' BETWEEN 'S176' AND orderdatum BETWEEN '' AND ''

First of all, I would remove the last part since it's empty strings on each side and it doesn't really do anything.

orderdatum BETWEEN '' AND ''

I have never used the between function before, but from what I see it seems like you shouldn't have the equal comparison before the between. I would also suggest to wrap the specific between condition within parantheses so we're sure the conditions aren't mixed with eachother, so the end-result should look something like this:

OR (orderkund BETWEEN 'S001' AND 'S176') AND (orderdatum BETWEEN '' AND '')

As mentioned above, I would suggest you to remove the last part if orderdatum value is not available.
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(1条)

报告相同问题？

关注问题

是否可以在两个varchar值之间执行 php
2019-02-18 10:47

回答 2 已采纳 I think this part is responsible for not giving the rows you expect. OR orderkund = 'S001' BETWEE
两个varchar2类型的日期如何取差值 oracle
2017-09-22 07:08

回答 1 已采纳 select floor( to_date('2017062','yyyymmdd') - to_date('20170301','yyyymmdd')) from dual;
VARCHAR列值的日期比较 mysql php
2015-05-26 15:45

回答 1 已采纳 Here is SQL snippet how you can convert your value in varchar column to date type. SELECT STR_TO_
mysql if语句后面执行两个语句_MySQL的if，case语句使用总结
2021-01-19 05:15

迷失的憨批的博客 Mysql的if既可以作为表达式用，也可在存储过程中作为流程控制语句使用，如下是做为表达式使用：IF表达式IF(expr1,expr2,expr3)如果 expr1 是TRUE (expr1 <> 0 and expr1 <> NULL)，则 IF()的返回值为...
需要检索字段在两个数值之间的记录 - 字段是varchar并且带有逗号的数字 mysql php
2012-04-05 14:46

回答 4 已采纳 You should convert that varchar field to a decimal type, alowing proper numeric comparisons. You c
oracle数据库，varchar2(10)只能存储两个汉字？？ oracle
2021-09-01 11:14

回答 2 已采纳你要明白VARCAHR2(10) 定义可以有两种修饰符一种叫字节，一种叫代码点。如果你使用代码点那么VARCAHR2(10) 能存10个汉字，如果用字节则可能可以存2~5个汉字。
如何在php中连接两个表并返回结果 mysql php
2016-06-19 19:29

回答 1 已采纳 You could use a not in clause $sql = " SELECT users.id, users.username,users.F
php mysql varchar_MySQL_Mysql中varchar长度设置方法，如果某一项中设置的是varchar(50 - phpStudy...
2021-01-28 11:59

牛人说的博客 Mysql中varchar长度设置方法如果某一项中设置的是varchar(50)那么对英文当然是50那么对中文呢utf-8的中文占3个字节那么,这个varchar(50)是不是只能存16个汉字了?mysql varchar(50) 不管中文还是英文都是存50个的...
在Cakephp中将表连接在两个模型之间 mysql php
2016-06-05 20:38

回答 2 已采纳 just change ciudad for ciudade <td><?= $complejo->has('ciudade') ? $this->Html-&g
删除基于php中varchar主键的行 mysql php
2015-05-03 00:34

回答 1 已采纳 Terrible, terrible TERRIBLE!!! $query = mysql_query("DELETE FROM courses WHERE course_Code = '$c
查询未在php中成功执行[重复] mysql php
2019-06-28 07:50

回答 1 已采纳 $rollno in $addrec->bind_param("sssss",$name,$rollno,$password,$gender,$email); should be $rn A
php定时执行sql语句,PHP执行SQL命令
2021-03-23 15:44

一璇的博客首先，在bookstore数据库中创建一张books数据表CREATE TABLE books(id INT NOT NULL AUTO_INCREMENT,bookname VARCHAR(80) NOT NULL DEFAULT '',publisher VARCHAR(60) NOT NULL DEFAULT '',author VARCHAR(20) NOT ...
sqlserver 执行SQL异常：从 varchar 数据类型到 datetime 数据类型的转换产生一个超出范围的值 sql
2019-01-24 13:50

回答 1 已采纳小时字段为50超出24了，所以报错。。。
oracle两个表数据比较,oracle数据库两表数据比较
2021-05-07 12:31

向朝卿的博客 1 引言在程序设计的过程中，往往会遇到两个记录集的比较。如华东电网PMS接口中实现传递一天中变更(新增、修改、删除)的数据。实现的方式有多种，如编程存储过程返回游标，在存储过程中对两批数据进行比较等等。本文...
varchar(100)是几个汉字
2021-07-20 16:10

stark张宇的博客如果是utf8编码，一个汉字占用3个字符，gbk占用两个字符，Sql语句： mysql> select im_contents from `swoole_msg`.`im_user_chat_record_7` where `chat_id` = '72'; +-------------+ | im_contents | +--------...
mysql有varchar2吗_char、varchar、varchar2区别
2021-01-28 04:07

身元未明的博客 char varchar varchar2 的区别区别: 1．CHAR的长度是固定的，而VARCHAR2的长度是可以变化的，比如，存储字符串“abc，对于CHAR (20)，表示你存储的字符将占20个字节(包括17个空字符)，而同样的VARCHAR2 (20)则只...
oracle比较字段有没有变化,OraclePL/SQL比较两个字段是否一样
2021-05-07 12:38

weixin_39568232的博客 Oracle PL/SQL中判断两个两个字段相等或者不相等的时候，常常出现：字段值明明不相等(一个空，一个不空)，但是判断不相等的时候就Oracle PL/SQL中判断两个两个字段相等或者不相等的时候，常常出现：字段值明明不相等...
python程序中注释语句也可以被执行_Python/Java程序员面试必备常用问题解析与答案...
2020-11-29 21:15

weixin_39966376的博客转自AI算法联盟，理解python技术问题，以及一些常见的java面试中经常遇到的问题，这些面试问题分为四类：是什么（what）如何做（how）说区别/谈优势...下面是回答这一问题的几个关键点：a. Python是一种解释型语...
没有解决我的问题, 去提问

悬赏问题

¥15 如何在scanpy上做差异基因和通路富集？
¥20 关于#硬件工程#的问题，请各位专家解答！
¥15 关于#matlab#的问题：期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707，使系统具有较小的超调量
¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
¥30 截图中的mathematics程序转换成matlab
¥15 动力学代码报错，维度不匹配
¥15 Power query添加列问题
¥50 Kubernetes&Fission&Eleasticsearch
¥15 報錯：Person is not mapped，如何解決？
¥15 c++头文件不能识别CDialog

是否可以在两个varchar值之间执行

2条回答 默认 最新

悬赏问题

2条回答默认最新