Jump to content

Bug in PHP? Pretty certain it is.

JudgementDay

By JudgementDay
in PHP Coding Help

Recommended Posts

PFMaBiSmAd Advanced Member

PFMaBiSmAd

Posted
Posted

Associative array index names are strings and need to be quoted, the reason being is that you could be using defined constants to provide the actual values and the syntax needs to support both methods.

 

Use quotes around index names that are literal strings (the extra code that php executes behind the scenes in the error response code every time it finds an unquoted array index name is a killer.)

digibucc Newbie

digibucc

Posted
Posted

i think they mean this:

 

 

<?php
$id = 1;
$query = "SELECT * FROM products WHERE id = mysql_real_escape_string($_POST['id'])"; 
//or even 
$query = 'SELECT * FROM products WHERE id = '. mysql_real_escape_string($_POST['id']); 
?>

 

the index is the value key in an array you are trying to pull,in this case "id" from the $_POST array

RIGHT = $_POST['id']

WRONG = $_POST[id]

 

 

id - assumed 'id'  says it all, it expected quotes around the word

 

 

digibucc Newbie

digibucc

Posted
Posted
Its funny how the mind works. I didn't even see it! I saw $_POST[id] as a whole.

 

Thanks.

 

it is isn't it! I scan spend hours looking at code i know is right, and then a cursory glance the next day shows me a hundred problems i missed.

sql-lover Newbie

sql-lover

Posted
Posted

Its funny how the mind works. I didn't even see it! I saw $_POST[id] as a whole.

 

Thanks.

 

it is isn't it! I scan spend hours looking at code i know is right, and then a cursory glance the next day shows me a hundred problems i missed.

. That's so true!

 

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.