PHP/SQL Checking if a value already exists in a database

Question

I am using the following code to check if an email address exists in a database I am getting the email value from an HTML form. I could verify the SQL query being executed and that part is working. My guess is, that I can not use the $result as I am doing it. I always get a "not found".

$command = ("SELECT * FROM '$table_name'" ." WHERE email = '$email'");
$result = $db->query($command);


if (!$result )

{
echo "not found";
} 

else {
echo "found";
}

score 1 · Accepted Answer · answered Feb 09 '15 at 03:27

1

Table name doesn't need quote.

$command = "SELECT * FROM $table_name WHERE email = '$email'";

Then sql injection problem is another problem.

answered Feb 09 '15 at 03:27

xdazz

158,678
38
247
274

PHP/SQL Checking if a value already exists in a database

1 Answers1