Ok-Alex
Reputation: 558
MySQL query php variable in variable?
I have a PHP function that makes a query to MySQL DB.
function regEvent($event, $l)
{
$sqlz_upd="UPDATE {$event} SET f1a='$_POST[F1A"'.$l.'"]'";
The question is what is the syntax to use variable $l in $_POST[F1A$l]?
Upvotes: 2
Views: 167
Answers (3)
Marius Solbakken Mellum
Reputation: 736
Here you go:
$var = mysql_real_escape_string($_POST["F1A".$l]);
$sqlz_upd="UPDATE {$event} SET f1a='$var' ";
Upvotes: 1
SuVeRa
Reputation: 2904
if you are using a string as key in an associative array. It should be enclosed in single or double quotes(though PHP won't give any error).
i.e. $_POST['F1A'. $l] or $_POST["F1A$l"]
my suggestion will be...
$sqlz_upd="UPDATE {$event} SET f1a='" . $_POST["F1A$l"] . "'";
Upvotes: 1
Patrick Desjardins
Reputation: 140753
$condition = $_POST["F1A" . $l];
$sqlz_upd="UPDATE {$event} SET f1a='".mysql_real_escape_string($condition)."'";
This is how to use your dynamic post and be safe for Sql Injection.
Upvotes: 4
Related Questions
- PHP- Multiple variables in mysql query
- Query with variables in MySQL
- How to include a PHP variable inside MySQL query
- PHP MySQL query with variables
- MySQL query data into a PHP variable
- variable in SQL query - PHP MYSQL
- PHP Variable in MySQL Query
- PHP variable variables in MySQL query
- PHP and MYSQL - Querying A Variable
- PHP variable within a MySql query