Home/ Questions/Q 6377441
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-25T01:52:26+00:00

I have situation when i want to add data from column formCompany, formPlace in

  • 0

I have situation when i want to add data from column formCompany, formPlace in tabel1 based on input from form into table2 column formCompany, formPlace. Something like this:

$formCompany = $_POST['formCompany'];

$formPlace = $_POST['formPlace'];

$formOffer = $_POST['formOffer'];


$sql="INSERT INTO table2  (formCompany, formPlace, formOffer) values ("SELECT table1.formCompany, table1.formPlace from table1 where formCompany LIKE '%$formCompany%' AND formPlace LIKE '%$formPlace%'", '$formOffer')"
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    First off

    Fix the SQL injection hole
    Use PDO, or

    $formCompany = mysql_real_escape_string($_POST['formCompany']);
$formPlace = mysql_real_escape_string($_POST['formPlace']);
$formOffer = mysql_real_escape_string($_POST['formOffer']);

    The syntax for insert select does not include the keyword ‘VALUES’ 

    $sql="INSERT INTO table2  
      (formCompany, formPlace, formOffer) 
      SELECT table1.formCompany, table1.formPlace, '$formOffer' "
        //All insertions happen here ^^^^^^^^^^^^^^^^^^
      ." FROM table1 
        WHERE formCompany LIKE '%$formCompany%' 
          AND formPlace LIKE '%$formPlace%' ";

    Now it should work.

    • 0