mysql - How to escape single-quote (apostrophe) in string using php -


i have sql query this:-

$stmt = $pdo->prepare(    "select * `products_keywords` `product_type` = '" . $product_type . "' ");

i don't know value in $product_type variable. now, getting men's shirt in $product_type variable causing syntax error in sql query. sure error due single quote in men's shirt value. how escape value according query? , how check if there single quote in $product_type variable , escape according query. in advance.

the answer don't need to. proper way use pdo's prepare this:

$stmt = $pdo->prepare(    "select * `products_keywords` `product_type` = ?");

this whole point of using prepared statement. bind parameter follows:

$stmt->bindparam(1, $product_type)

proof,

schema:

create table `products_keywords` (   `id` int not null,     `products_keywords` varchar(1000) not null,     `product_type` varchar(100) not null ); insert `products_keywords` (`id`,`products_keywords`,`product_type`) values   (1,'zoom lawn cut mower',"lawn mower"), (2,'stylish torso polo','men\'s shirt');

view data:

select * `products_keywords`; +----+---------------------+--------------+ | id | products_keywords   | product_type | +----+---------------------+--------------+ |  1 | zoom lawn cut mower | lawn mower   | |  2 | stylish torso polo  | men's shirt  | +----+---------------------+--------------+

php:

<?php     // turn on error reporting, or wonder why nothing happening @ times     error_reporting(e_all);     ini_set("display_errors", 1);          $servername="localhost";     $dbname="so_gibberish";     $username="nate123";     $password="opensesame1";      try {         $pdo = new pdo("mysql:host=$servername;dbname=$dbname", $username, $password);         $pdo->setattribute(pdo::attr_errmode, pdo::errmode_exception);         $pdo->setattribute(pdo::attr_emulate_prepares, false);          $product_type="men's shirt";         $stmt = $pdo->prepare("select * `products_keywords` `product_type` = ?");         $stmt->bindparam(1, $product_type);         $stmt->execute();         while($row = $stmt->fetch()) {             echo $row['id'].", ".$row['products_keywords'].", ".$row['product_type']."<br/>";         }     } catch (pdoexception $e) {         echo 'pdo problemo: ' . $e->getmessage();   // dev not production code         exit();     } ?>

browser:

enter image description here


-

Comments

Post a Comment

Popular posts from this blog

unity3d - Rotate an object to face an opposite direction -

i have object , b. when click on object b, rotates object b (a faces b). b doesn't face a. need following : when faces b, need face opposite direction. have code rotating @ b. how rotate face opposite direction after that? vector3 targetdirection = target - transform.position; float step = speed * time.deltatime; vector3 newdirection = vector3.rotatetowards (turretdome.transform.forward, targetdirection, step, 0.0f); turretdome.transform.rotation = quaternion.lookrotation (newdirection); you object facing object b, want inverse direction of object after that? objecta.transform.rotation = quaternion.inverse(objecta.transform.rotation) but lets assume example turretdome object a, (negate direction): turretdome.transform.rotation = quaternion.lookrotation (-newdirection); naturally, both of these snippets not show how smoothen rotation, seem know how use time.deltatime. just incase unsure, quaternion.lerp this
Read more

angular - Is it possible to get native element for formControl? -

i've got angular2 reactive form . created formcontrol s , assigned input fields by [formcontrol]=... . understand creates nativeelement <-> formcontrol link. my question: possible nativeelement formcontrol ? wanna myformcontrol.nativeelement.focus() i can share 1 terrible solution works me. in reactive forms can use either 1) formcontroldirective ts mycontrol = new formcontrol('') template <input type="text" [formcontrol]="mycontrol"> or 2) formcontrolname ts myform: formgroup; constructor(private fb: formbuilder) {} ngoninit() { this.myform = this.fb.group({ foo: '' }); } template <form [formgroup]="myform"> <input type="text" formcontrolname="foo"> </form> so these directives write patch like 1) formcontroldirective const originformcontrolngonchanges = formcontroldirective.prototype.ngonchanges; formcontroldirective.proto
Read more

javascript - Why jQuery Select box change event is now working? -

i working on product filters user select select box according his/her preference not getting selected value user in jquery. html code:- <select name="product_filter" id="product_filter"> <option value="price_low_first">price : low high</option> <option value="price_high_first">price : high low</option> <option value="latest">latest</option> <option value="popular">most popular</option> </select> jquery code: $(function () { $("#product_filter").change(function () { alert("hi") var selectedtext = $(this).find("option:selected").text(); var selectedvalue = $(this).val(); alert("selected text: " + selectedtext + " value: " + selectedvalue); }); }); hi believe code perfect. once please check jquery.min.js
Read more