SQL WHERE conditions

Question

I have a problem with SQL syntax. NON working code:

$showdata = $db->prepare("SELECT * FROM adherence WHERE dateandtime='$chosendate' AND lastname='$lastname'");

Working code 1:

$showdata = $db->prepare("SELECT * FROM adherence WHERE dateandtime='$chosendate'");

Working code 2:

$showdata = $db->prepare("SELECT * FROM adherence WHERE lastname='$lastname'");

Separately - code works, but when using AND I get no results from database. Any idea?

EDIT

$showdata = $db->prepare("SELECT * FROM adherence WHERE dateandtime= :chosendate AND lastname= :lastname");
                $showdata->bindParam(':chosendate', $chosendate);
                $showdata->bindParam(':lastname', $lastname);
                $showdata->execute(); 
                $rowas = $showdata->fetch();
                foreach ($showdata as $rowas){
                echo '<div class="twenty name">', $rowas["lastname"], $rowas["firstname"], '</div>';
                }

EDIT 2 DATABASE:

ECHO'ing $chosendate and $lastname just above script. Result:

[Your script is at risk for SQL Injection Attacks.](http://stackoverflow.com/questions/60174/how-can-i-prevent-sql-injection-in-php) You should use [prepared](http://en.wikipedia.org/wiki/Prepared_statement) statements properly. — Jay Blanchard, Dec 03 '15 at 18:31
Are you sure there is a row where both of those conditions are true? — Draco18s no longer trusts SE, Dec 03 '15 at 18:34

score 1 · Accepted Answer · 2016-02-15T07:46:19.290

1

I think you've made a mistake in logic of your query, maybe there isn't any row which satisfies these two conditions. Apart from that you should use Prepared Statement properly:

$showdata = $db->prepare("SELECT * FROM adherence WHERE
dateandtime= :chosendate AND lastname= :lastname");
$showdata->bindParam(':chosendate', $chosendate);
$showdata->bindParam(':lastname', $lastname);
$showdata->execute();

edited Feb 15 '16 at 07:46

answered Dec 03 '15 at 18:39

$chosendate and $lastname are set correctly, Tried even echo them before this script. – JustinasT Dec 03 '15 at 18:43
Yeah you are right but i think there isn't any row which satisfies those two condition after WHERE. – Dec 03 '15 at 18:45
Checked it 20 times, there is :) I can make an edit within few minutes – JustinasT Dec 03 '15 at 18:46
So would you please provide your table structure? – Dec 03 '15 at 18:48
As I mentioned, separately $chosendate and $lastname giving data corretly – JustinasT Dec 03 '15 at 19:06
Found solution. I just needed to remove $rowas = $showdata->fetch(); Thank you! – JustinasT Dec 03 '15 at 19:12

SQL WHERE conditions

1 Answers1