stackoom
  简体   繁体   中英

Mysql Query Displays an error in SQL syntax when it's right

 原文  2014-01-03 07:53:36       php/ mysql/ sql/ syntax

Question

I got sick of this error. I'm pretty sure it works with '$_POST[name]' but sql doesn't accept it.

It gives me the error saying: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ')' at line 2 

$syn = mysql_real_escape_string($_POST['syn']);
$fore = mysql_real_escape_string($_POST['fore']);
 $localfore = mysql_real_escape_string($_POST['localfore']);
$save = mysql_query("INSERT INTO tblforecast (Issued,Valid,Synopsis,Forecast,Local_Forecast,Station11,Station12,Station13,Station14,Station15,Station16,Station17,Station18,Station19,Forecaster)
                           VALUES (now(),'24','$syn','$fore','$localfore','sample','$sample','sample','sample','sample','sample','sample','sample','sample',$id)");

What's going on?

PS. Line 2 points at the start of VALUES

3 answers

solution1
 0  2014-01-03 08:00:33

This is very bad practice to save post data directly. Instead you can use $syn = mysql_real_escape_string($_POST['syn']); and $syn put into your sql query.

solution2
 0 ACCPTED  2014-01-03 08:01:38

Try this 

$sql = "INSERT INTO tblforecast (Issued,Valid,Synopsis,Forecast,Local_Forecast,Station11,Station12,Station13,Station14,Station15,Station16,Station17,Station18,Station19,Forecaster)
                                   VALUES ('{$datetime}',24,'{$_POST[syn]}','{$_POST[fore]}','{$_POST[localfore]}','sample','sample','sample','sample','sample','sample','sample','sample','sample',$id)";
echo sql;

$save = mysql_query($sql);

solution3
 0  2014-01-03 08:02:03

If you write the query in a more eadable way, you can spot some mistakes: 

INSERT INTO
    tblforecast
(
    Issued
    ,Valid
    ,Synopsis
    ,Forecast
    ,Local_Forecast
    ,Station11
    ,Station12
    ,Station13
    ,Station14
    ,Station15
    ,Station16
    ,Station17
    ,Station18
    ,Station19
    ,Forecaster
) VALUES (
    '$datetime'
    ,24
    ,'$_POST[syn]'
    ,'$_POST[fore]'
    ,'$_POST[localfore]'
    ,'sample'
    ,'$sample]' // <-- is that supposed to be there?
    ,'sample'
    ,'sample'
    ,'sample'
    ,'sample'
    ,'sample'
    ,'sample'
    ,'sample'
    ,$id // <-- where are the closing brackets?

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Error when running MySQL query, looking for right syntax error in SQL syntax but using the right sql query sql_query: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near Mysql error.Error in the syntax of the sql query Invalid query: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax MySQL query syntax error when used in PHP Error in SQL syntax Can seem to find the right query SQL syntax error when completing query on a database Error in SQL syntax when I try a query error with mysql query syntax
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM