Home/ Questions/Q 9236985
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-18T07:25:56+00:00

I’m coding server side of a web site and i used this for storing

  • 0

I’m coding server side of a web site and i used this for storing the post

if(!(mysql_query("INSERT INTO `post-data`(`site`, `source`, `meta-desc`, `title`, `figure`, `post`,`date`, `tags`, `category`) VALUES ('$this->site','$url','$this->meta_desc','$this->title','$this->figure',htmlentities($this->body),NOW(),'','')"))){
            echo mysql_error();
            die("DB_in_post Error");}

I had no problem since when i was testing a sample post i got mysql syntax error

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ‘

as a person ‘ at Line 20

when i use htmlentities i see this error

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ‘hello’, ‘world’, ‘foo’ => ‘bar’);

if you want’ at line

Post_Link this is an image from the part of post that is making error the post is about coding

so any idea what should i do?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Looks like a quoting issue by your call to htmlentities() (which I changed to mysql_real_escape_string())

    "INSERT INTO `post-data`
     (`site`, `source`, `meta-desc`, `title`, `figure`, `post`,`date`, `tags`, `category`) 
VALUES (
    '$this->site',
    '$url',
    '$this->meta_desc',
    '$this->title',
    '$this->figure',
    '" . mysql_real_escape_string($this->body) ."',
    NOW(),
    '',
    ''
)"
    • 0