Tyler Jensen
Reputation: 167
How do I add text to a record when inserting from php?
I am using this statement to add information to a database
$sql = "INSERT INTO test1 (manufacturer, name, url) VALUES ('{$_POST['manufacturer']}','{$_POST['name']}', '{$_POST['url']}')";
var_dump($sql);
I would like to add http://webaddress.com/ before the $_POST['url']. So if I enter in file name example it will go into the record as http://webaddress.com/example
Upvotes: 1
Views: 38
Answers (1)
Fabio
Reputation: 23510
You just need to concatenate your string and your variable
"INSERT INTO test1 (manufacturer, name, url) VALUES ('".$_POST['manufacturer']."','".$_POST['name']."', 'http://webaddress.com/".$_POST['url']."')";
As side note I would like you to focus your attention on sql injection since your code is vulnerable and you are at risk
Upvotes: 1
Related Questions
- How do I make a redirect in PHP?
- Deleting an element from an array in PHP
- How do I get a YouTube video thumbnail from the YouTube API?
- How can I prevent SQL injection in PHP?
- How do you parse and process HTML/XML in PHP?
- Secure hash and salt for PHP passwords
- How can I do 'insert if not exists' in MySQL?
- How does PHP 'foreach' actually work?
- How do I get PHP errors to display?