Let’s say I have these two variables $number = 1; $word = one; and

Question

0

Asked: June 5, 20262026-06-05T23:48:58+00:00 2026-06-05T23:48:58+00:00

Let’s say I have these two variables $number = 1; $word = one; and

0

Let’s say I have these two variables

$number = 1;
$word = "one";

and I want to use them in a pg_query.

This is what I’ve got:

$result = pg_query($con, 'UPDATE a SET z = ARRAY[{$number}] WHERE word = {pg_escape_literal($word)}');

But it doesn’t work..

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-05T23:49:00+00:00

To use string interpolation, you have to use double quotes:

 $x = 3;
 "This works: $x"     // This works: 3
 'This does not: $x'; // This does not: $x

You also can’t interpolate function calls into strings like you’re attempting with {pg_escape_literal($word)}. You’ll need to escape the variable before interpolating it into the string:

$word_esc = pg_escape_literal($word);
$result = pg_query(
  $con,
  "UPDATE a SET z = ARRAY[$number] WHERE word = $word_esc"
);

You could also use sprintf:

$result = pg_query(
  $con,
  sprintf(
    "update a set z=ARRAY[%d] where word = %s",
    $number,
    pg_escape_literal($word)
  )
);

But the best and safest is to use pg_query_params function, as you don’t escape any parameter. And it is very easy to forget and expose your site to SQL-injection attacks.

$result = pg_query_params(
  'update a set z=ARRAY[$1] where word = $2',
  array($number,$word)
)

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

Let’s say I have these two variables $number = 1; $word = one; and

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply