forum

home / developersection / forums / what is wrong with this query: "select * from table where id = $_post[ 'id' ]"?

Ask Question

What is wrong with this query: "SELECT * FROM table WHERE id = $_POST[ 'id' ]"?

Erick Wilsom 2125 27-Oct-2022

What is wrong with this query: "SELECT * FROM table WHERE id = $_POST[ 'id' ]"?

sql server reporting services sql server 
Updated on 27-Oct-2022
Erick Wilsom

student

Writing is my profession! I have written hundreds of article for many organizations and looking forward to work with growing organization. I am compatible to produce content in many categories including International politics, Healthcare, Education, Lifestyle, etc.. I understand the value of your time that you have invested to read my bio. #thanks

Follow Message
Can you answer this question?
Answer

2 Answers

Kirti Sharma

Kirti Sharma

03-Nov-2022

The use of table keyword it displays error when we execute the query SELECT * FROM table WHERE id = $_POST[ 'id' ]'?

Siddhi Malviya

Siddhi Malviya

28-Oct-2022

Never use user input directly in queries.

This works:

$_POST['id'] = 27;

$sql = 'SELECT * FROM table WHERE id = $_POST[ 'id' ]'; echo $sql;

l = 'SELECT * FROM table WHERE id = $_POST[ 'id' ]';


echo $sql;


MindStick Training
MindStick Training

Liked By

We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy