How can your organization benefit from savings just by replacing your legacy backup solutions with Acronis' #CyberProtection? Join Forrester's Joe Branca and Ryan Davis from Acronis live as they explain how you can too.
PHP mySql error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WHERE ProductId='x'' at line x
I have create a 'product.php' file that links succesfully to a mySql database. Also, there are 2 other file: an 'add_product.php' file that adds to mySql database through a form; and, a one_product.php file that edit product existing in the database. The add product works; but the edit returns an error after clicking submit button. Error message: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WHERE ProductId='x'' at line x. (the error was not there when I tested how the files work together with 4 columns before I started the actual work yesterday.)
The three files, plus the includ files are attached for reference. Please advise what correction should be done
product.php
add-product.php
one-product.php
common.php
The three files, plus the includ files are attached for reference. Please advise what correction should be done
product.php
add-product.php
one-product.php
common.php
Do more with
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
see this line:
mysql_query("UPDATE products SET ProductName='$ProductName'
,LastModifiedDateTime='$La
should be:
mysql_query("UPDATE products SET ProductName='$ProductName'
,LastModifiedDateTime='$La
mysql_query("UPDATE products SET ProductName='$ProductName'
,LastModifiedDateTime='$La
should be:
mysql_query("UPDATE products SET ProductName='$ProductName'
,LastModifiedDateTime='$La
also I think ' ' not required for Product Id as it in integer data type
Should be like this
mysql_query("UPDATE products SET ProductName='$ProductName'
,LastModifiedDateTime='$La
Should be like this
mysql_query("UPDATE products SET ProductName='$ProductName'
,LastModifiedDateTime='$La
I think it is OK to quote integer fields, but not necessary. However an extraneous comma anywhere in the query string is trouble.
A good strategy for writing queries is to create a separate variable for the query string. Then you can visualize the query string in case there is an error. Here is a code example of how I might do it.
Best to all for a good New Year, ~Ray
A good strategy for writing queries is to create a separate variable for the query string. Then you can visualize the query string in case there is an error. Here is a code example of how I might do it.
// NOT THIS...
mysql_query("UPDATE products SET ProductName='$ProductName', SupplierId='$SupplierId' ,CategoryId='$CategoryId', QuantityPerUnit='$QuantityPerUnit',UnitPrice='$UnitPrice',UnitsInStock='$UnitsInStock',UnitsOnOrder='$UnitsOnOrder',ReorderLevel='$ReorderLevel',Discontinued='$Discontinued'
,LastModifiedDateTime='$LastModifiedDateTime' WHERE ProductId='$ProductId'")
// BUT THIS
$sql
=
"UPDATE products
SET
ProductName = '$ProductName'
, SupplierId = '$SupplierId'
, CategoryId = '$CategoryId'
, QuantityPerUnit = '$QuantityPerUnit'
, UnitPrice = '$UnitPrice'
, UnitsInStock = '$UnitsInStock'
, UnitsOnOrder = '$UnitsOnOrder'
, ReorderLevel = '$ReorderLevel'
, Discontinued = '$Discontinued'
, LastModifiedDateTime = '$LastModifiedDateTime'
WHERE
ProductId = '$ProductId'
"
;
$res = mysql_query($sql);
if (!$res)
{
echo "FAIL: $sql ";
echo "BECAUSE: " . mysql_error();
/* HANDLE ERROR CONDITION HERE */
}
Best to all for a good New Year, ~Ray
Premium Content
You need an Expert Office subscription to comment.Start Free Trial