stackoom
  简体   繁体   中英

Empty result of query in PHP , but when I run an SQL query from PHPMyAdmin, it works

 原文  2013-09-23 07:57:18       php/ mysql/ wordpress

Question

Empty result of query in PHP (wordpress), but when I run an SQL query from PHPMyAdmin, it works ! And here is part of code, which returns empty array 

<?php
global $wpdb; 
$from = $_POST['amount'];
$to = $_POST['amount1'];

$query = "SELECT  post_content
FROM `wp_postmeta`
INNER JOIN `wp_posts` ON wp_posts.ID = wp_postmeta.post_id
WHERE meta_key = 'product_price'
AND meta_value > '$from'
AND meta_value < '$to'";

$results = $wpdb->get_results($query);;
var_dump($results);  // empty array
?>

Anyone can explain my the problem ? Thanks !

3 answers

solution1
 1  2013-09-23 08:09:35

I believe the reason for this is that the input to the clauses regarding the meta_value column are being treated as strings. You need to treat them as numerics.

Take a look at the 'query_posts' function in Wordpress. 

$args = array(
  'meta_query'=> array(
    array(
      'key' => 'product_price',
      'compare' => '>',
      'value' => $from,
      'type' => 'numeric'
    ),
    array(
      'key' => 'product_price',
      'compare' => '<',
      'value' => $to,
      'type' => 'numeric'
    )
  )
  'posts_per_page' => 100
) );

query_posts( $args );

Alternatively, have your inputs treated as numerics, not strings. Remove the single quotes around them in your original query. 

global $wpdb; 
$from = $_POST['amount'];
$to = $_POST['amount1'];

$query = "SELECT  post_content
FROM `wp_postmeta`
INNER JOIN `wp_posts` ON wp_posts.ID = wp_postmeta.post_id
WHERE meta_key = 'product_price'
AND meta_value > $from
AND meta_value < $to";

$results = $wpdb->get_results($query);
var_dump($results);

I still highly recommend you get in the habit of sanitizing your input.

An added benefit of the first solution, is that the query_posts function will automatically sanitize your input, based on the input type provided.

References:

solution2
 0  2014-01-24 16:57:42

I really care about security and all answers no one was concerned about it so I am adding the best solution for this because you should NEVER trust your inputs you need always to validate it.

Below should be a good working solution.

Also you should read this and this . 

<?php
global $wpdb; 
$from = $_POST['amount'];
$to = $_POST['amount1'];

$query = "SELECT  post_content
FROM `wp_postmeta`
INNER JOIN `wp_posts` ON wp_posts.ID = wp_postmeta.post_id
WHERE meta_key = 'product_price'
AND meta_value > %d
AND meta_value < %d";

$results = $wpdb->get_results($wpdb->query($wpdb->prepare($query, $from, $to));
var_dump($results); 
?>

solution3
 -1 ACCPTED  2013-09-23 08:18:56

Make sure $from and $to have numeric values.

And then just remove the single quotes from the SQL query.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Query returns empty result in PHP,but works fine on phpmyadmin DB query from PHP gives no result but same query on phpMyAdmin works? SQL query works in phpmyAdmin, not in php PHP mysqli - updating value of enum field results in empty string, but same query works when run in PHPMyAdmin Identifying why identical query returns result in phpMyAdmin but not when run in PHP SQL query returns empty result in PHP - same query returns result in PHPMyAdmin SQL query empty result from php SQL query duplicated on PHP PDO and different from the result on phpmyadmin SQL Query works in phpMyAdmin but not in php page SQL query works in phpMyAdmin but not in php using PDO
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM