Solved

why i cant insert into a field in a table in mysql things like "."  "?"   "," ?????

Posted on 2008-06-10
8
233 Views
Last Modified: 2012-05-05
i have a field in a table and i want to insert in it this symbols
?
.
,
'
but its not working
why is that?
0
Comment
Question by:mgtm3
8 Comments
 
LVL 5

Accepted Solution

by:
vibrazy earned 250 total points
ID: 21749453
Try using mysql_real_escape_string($fieldname);
0
 

Author Comment

by:mgtm3
ID: 21749461
look att the code and tell me what to do?
<?php
 
include 'cpoll.php';
 
 
$subject = $_POST['subject'];
$op1 = $_POST['op1'];
$op2 = $_POST['op2'];
$op3 = $_POST['op3'];
$op4 = $_POST['op4'];
$op5 = $_POST['op5'];
$op6 = $_POST['op6'];
$op7 = $_POST['op7'];
$op8 = $_POST['op8'];
$op9 = $_POST['op9'];
$op10 = $_POST['op10'];
$op11 = $_POST['op11'];
$op12 = $_POST['op12'];
$gen=$_POST['gen'];
 
 
$result = mysqli_query($link, "SELECT count(*) FROM $gen");
$row = mysqli_fetch_array($result, MYSQLI_NUM);
$row[0]++;
$pollname="poll".$gen.$row[0];
echo $pollname; 
 
 
 
echo "subject - ".$subject."<br />op1 - ".$op1."<br />op2 - ".$op2."<br />op3 - ".$op3."<br />op4 - ".$op4."<br />op5 - ".$op5."<br />gen - ".$gen;
 
$sql = "CREATE TABLE $pollname (
`id` int( 255 ) NOT NULL AUTO_INCREMENT,
  `subject` VARCHAR( 700 )NOT NULL,
        `op1` VARCHAR( 700 )NOT NULL,
        `op2` VARCHAR( 700 ) NOT NULL,
        `op3` VARCHAR( 700 ) NOT NULL,
        `op4` VARCHAR( 700 ) NOT NULL,
        `op5` VARCHAR( 700 ) NOT NULL,
		 `op6` VARCHAR( 700 )NOT NULL,
        `op7` VARCHAR( 700 ) NOT NULL,
        `op8` VARCHAR( 700 ) NOT NULL,
        `op9` VARCHAR( 700 ) NOT NULL,
        `op10` VARCHAR( 700 ) NOT NULL,
		`op11` VARCHAR( 700 ) NOT NULL,
        `op12` VARCHAR( 700 ) NOT NULL,
            `date` VARCHAR( 700 ) NOT NULL,
            `user` VARCHAR( 700 ) NOT NULL,
			            `comment` text NOT NULL,
 
            `gen` VARCHAR( 700 ) NOT NULL,
            
        PRIMARY  KEY ( `id` )
       )";
 
 
 
 
 
mysqli_query($link,$sql);
 
mysqli_close($link);
unset($link);
include 'cpoll.php';
 
$f = "INSERT INTO $pollname (op1,op2,op3,op4,op5,subject,gen) VALUES ('$op1','$op2','$op3','$op4','$op5','$subject','$gen')"; 

Open in new window

0
 
LVL 5

Expert Comment

by:vibrazy
ID: 21749493
Try this, if that doesnt work, tell me what error you are getting.

Regards,
Vibrazy
$f = "INSERT INTO $pollname (op1,op2,op3,op4,op5,subject,gen) VALUES ('".$op1."','".$op2."','".$op3."','".$op4."','".$op5."','".$subject."','".$gen."')"; 
mysqli_query($link,$f);

Open in new window

0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Author Comment

by:mgtm3
ID: 21749508
can u write me the function to get the error ?
0
 

Author Comment

by:mgtm3
ID: 21749540
o.k this what i got

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 's Day','Valentine's Day','Favorite holiday?','other')' at line 1
0
 
LVL 28

Assisted Solution

by:gamebits
gamebits earned 250 total points
ID: 21749671
$subject = $_POST['subject'];
$op1 = mysql_real_escape_string ($_POST['op1']);
$op2 = mysql_real_escape_string ($_POST['op2']);
$op3 = mysql_real_escape_string ($_POST['op3']);
$op4 = mysql_real_escape_string ($_POST['op4']);
$op5 = mysql_real_escape_string ($_POST['op5']);
$op6 = mysql_real_escape_string ($_POST['op6']);
$op7 = mysql_real_escape_string ($_POST['op7']);
$op8 = mysql_real_escape_string ($_POST['op8']);
$op9 = mysql_real_escape_string ($_POST['op9']);
$op10 = mysql_real_escape_string ($_POST['op10']);
$op11 = mysql_real_escape_string ($_POST['op11']);
$op12 = mysql_real_escape_string ($_POST['op12']);
$gen = mysql_real_escape_string ($_POST['gen']);


Now you can use it in a query
0
 

Author Comment

by:mgtm3
ID: 21749716
thanksssssssssssssssss
0
 
LVL 4

Expert Comment

by:afzz
ID: 21749726
You can also do the following instead of individually changing the values
foreach($_POST as $key => $val){
${$key} = mysql_real_escape_string($val);
}

Open in new window

0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
hosting images 4 29
Wordpress Taxonomy 2 28
google analytics on wp-admin password protected area 2 23
Doing something wrong with this PDO Select Statement... 3 10
As a database administrator, you may need to audit your table(s) to determine whether the data types are optimal for your real-world data needs.  This Article is intended to be a resource for such a task. Preface The other day, I was involved …
Introduction This article is intended for those who are new to PHP error handling (https://www.experts-exchange.com/articles/11769/And-by-the-way-I-am-New-to-PHP.html).  It addresses one of the most common problems that plague beginning PHP develop…
Learn how to match and substitute tagged data using PHP regular expressions. Demonstrated on Windows 7, but also applies to other operating systems. Demonstrated technique applies to PHP (all versions) and Firefox, but very similar techniques will w…
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question