HTML search to PostgreSQL db syntax "$" error

Question

I want create php file that show a db all row's, i look at the internet but there "$" is syntax error, and other variable i didn't find.

Here's my php code :

    if(isset($_POST['search'])) {
$searchq = $_POST['search']; };


$query = 'SELECT * FROM serviss WHERE pasutijuma_nummurs =$searchq ';

I tried put in

$query = 'SELECT * FROM serviss WHERE pasutijuma_nummurs ='·$searchq' ';

But query didn't work at all.

And here's my HTML form:

<form action="search.php" method="POST">
 Meklēt pēc pasūtijuma nummura  <input type="text" name="search ">
 <input type="submit" value="Search"/>
</form>

I hope someone can help me.

Fixed that problem :

$result = pg_query($db, "SELECT * FROM serviss where pasutijuma_nummurs = '$_POST[search]'");

Enable error reporting. Your form failed because of the input having a space in it; it counts. — Funk Forty Niner, Dec 04 '19 at 14:34

N'Bayramberdiyev · Answer 1 · 2019-12-03T11:05:10.070

3

Remove ; at the end of if statement. And double quote your query.

if (isset($_POST['search'])) {
    $searchq = $_POST['search'];

    $query = "SELECT * FROM serviss WHERE pasutijuma_nummurs = '$searchq'";
}

Do not forget to use prepared statements.

edited Dec 03 '19 at 11:05

answered Dec 03 '19 at 10:54

N'Bayramberdiyev

5,936
7
27
47

Well it didn't work or mby i'm just doing wrong. – Henrijs Soltums Dec 03 '19 at 12:56
What error are you getting now? Be sure `$_POST['search']` is set. – N'Bayramberdiyev Dec 03 '19 at 13:10
i put an code in the "Answer yourself" – Henrijs Soltums Dec 03 '19 at 13:51

score 0 · Answer 2 · answered Dec 03 '19 at 10:53

0

You can try this:

$query = "SELECT * FROM serviss WHERE pasutijuma_nummurs = '{$searchq}'";

But first you need validate your data. Hope help you.

answered Dec 03 '19 at 10:53

Dmitry Leiko

3,970
3
25
42

HTML search to PostgreSQL db syntax "$" error

2 Answers2