xProteuSx Posted October 6, 2011 Share Posted October 6, 2011 I am trying to add a value, input into a form, to a MySQL database. However, something must be wrong with the casting, because if there is a space in the form value, then I get an error, as in: //$_POST['string'] == '1blah 2blah'; sql = "INSERT INTO table (some_string) VALUES ($_POST[string])"; $sql_result = mysql_query($sql) or die ('The error is as follows: ' . mysql_error() . '<br /><br />Value could not be added.'); Then I get the following error: The error is as follows: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '2blah' at line 1 I've entered paragraphs into a database before, so this error is now to me. The column 'some_value' is a type: varchar(50). Quote Link to comment https://forums.phpfreaks.com/topic/248547-insert-string-into-mysql-db/ Share on other sites More sharing options...
Buddski Posted October 6, 2011 Share Posted October 6, 2011 You need to put some quotes in your SQL query so it knows you are entering a string into the field, might I also suggest adding some kind of security measure $string = mysql_real_escape_string($_POST['string']); $sql = "INSERT INTO table (some_string) VALUES ('$string')"; Quote Link to comment https://forums.phpfreaks.com/topic/248547-insert-string-into-mysql-db/#findComment-1276430 Share on other sites More sharing options...
xProteuSx Posted October 6, 2011 Author Share Posted October 6, 2011 Man, like my profile says, "Not even caffeine can help me after 2am". Thanks. Quote Link to comment https://forums.phpfreaks.com/topic/248547-insert-string-into-mysql-db/#findComment-1276433 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.