Leeder Posted May 14, 2007 Share Posted May 14, 2007 $query = mysql_query("SELECT con, verified FROM `table` WHERE email='".$_POST['email']."'"); Can someone find the problem with this code, I've run through and edited my script a fewe times and the above line seems to be the problem. Link to comment https://forums.phpfreaks.com/topic/51316-select-question/ Share on other sites More sharing options...
obsidian Posted May 14, 2007 Share Posted May 14, 2007 <?php $query = mysql_query("SELECT con, verified FROM `table` WHERE email='".$_POST['email']."'"); ?> In and of itself, there is apparently nothing wrong with the code, but there are sooo many more variables than simply debugging parse errors. Besides the fact that this query is wide open to SQL injection, there are several things that we need to know: what are you attempting to do? Are you doing any checks on the email variable to assure that it contains what you think it contains? Have you run any debugging options on the query itself? Is your table really named "table" as your query implies? I would recommend you try something like this for starters: <?php $sql = "SELECT con, varified FROM `table` WHERE email = '{$_POST['email']}'"; $query = mysql_query($sql) or die(mysql_error() . "<br />\n<b>SQL:</b> $sql"); ?> Link to comment https://forums.phpfreaks.com/topic/51316-select-question/#findComment-252741 Share on other sites More sharing options...
Leeder Posted May 14, 2007 Author Share Posted May 14, 2007 Aren't these different? $query = mysql_query("SELECT con, verified FROM `table` WHERE email='".$_POST['email']."'"); $query = mysql_query("SELECT con, varified FROM `table` WHERE email = '{$_POST['email']}'"); ? email='".$_POST['email']."' email = '{$_POST['email']}' Link to comment https://forums.phpfreaks.com/topic/51316-select-question/#findComment-252980 Share on other sites More sharing options...
fenway Posted May 14, 2007 Share Posted May 14, 2007 It's just a variable interpolation difference. Link to comment https://forums.phpfreaks.com/topic/51316-select-question/#findComment-253082 Share on other sites More sharing options...
obsidian Posted May 15, 2007 Share Posted May 15, 2007 Aren't these different? email='".$_POST['email']."' email = '{$_POST['email']}' As fenway stated, the first two evaluate the same, but those two are very different. Consider the following: <?php $_POST['email'] = '[email protected]'; // These will all echo "[email protected]" echo $_POST['email']; echo "$_POST[email]"; echo "{$_POST['email']}"; // This will echo "$_POST[email]" echo '$_POST[email]'; // This will echo "{$_POST['email']}" echo '{$_POST[\'email\']}'; ?> Link to comment https://forums.phpfreaks.com/topic/51316-select-question/#findComment-253680 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.