Home/ Questions/Q 556341
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-13T11:54:34+00:00

The code: $msr = db_query(SELECT * FROM users WHERE username=’$username’); if (db_num_rows($msr) == 0)

  • 0

The code:

  $msr = db_query("SELECT * FROM users WHERE username='$username'");
  if (db_num_rows($msr) == 0)
      return null;

When

function db_query($query) { return mysql_query($query) or die(mysql_error() . " when querying: $query"); }
function db_num_rows($queres) { return mysql_num_rows($queres) or die(mysql_error()); }

Shows error: Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource

When I replace “db_” with “mysql_” everything works perfectly.
Is there a way to fix this?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    See “Creating a php function to return mysql results” here on SO.

    function db_query($query) { 
  $result = mysql_query($query) or die(mysql_error()." when querying: $query"); 
  return $result;
}

// etc

    Apart from that, you should absolutely not do 

    $msr = db_query("SELECT * FROM users WHERE username='$username'");

    for security reasons. This is wide open for SQL injection attacks, see XKCD 327. Use parametrized SQL statements instead.

    • 0