FraanXT Posted May 23, 2014 Share Posted May 23, 2014 Im having problems with this line, i don't know where is the error, can you guys help me please? mysql_query('SELECT * FROM `users` WHERE CONCAT(Nom, CONCAT( " ", Cognoms)) like %'.$_POST["busca"].'%'); I want to select from table users only the rows that contains $_POST["busca"] in columns Nom + " " + Cognoms. Help me please! Thank you all! Link to comment https://forums.phpfreaks.com/topic/288728-php-my-sql-concade-problem/ Share on other sites More sharing options...
bsmither Posted May 24, 2014 Share Posted May 24, 2014 I think CONCAT() is incremental. That is to say: CONCAT(Nom, " ", Cognoms) Link to comment https://forums.phpfreaks.com/topic/288728-php-my-sql-concade-problem/#findComment-1480671 Share on other sites More sharing options...
Barand Posted May 24, 2014 Share Posted May 24, 2014 Always escape user data before you use it in a query. The %s should be inside the the quotes with the search term. $busca = mysql_real_escape_string($_POST['busca']); $result = mysql_query("SELECT * FROM `users` WHERE CONCAT(Nom, ' ', cognoms) like '%$busca%' "); I would advise you move to MYSQLi or PDO if you don't want to rewrite all your code next time you upgrade PHP Link to comment https://forums.phpfreaks.com/topic/288728-php-my-sql-concade-problem/#findComment-1480683 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.