Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
When i do a query it says:
"Parse error: syntax error, unexpected T_VARIABLE in *****/postchange.php on line 125"
My query is:
PHP:
$id = $_GET['id'];
if($id > 1){
mysql_query("UPDATE `post` SET userid = 16 WHERE postid = "$id)
or die(mysql_error());
echo '...Done';
} else {
echo 'Invalid post.';
}
any ideas?
You’re missing a
.between your string and variable. It’s necessary to concatenate into a single string. It should be:Although really you should be using mysqli_* or PDOs.
Additionally, your query is extremely susceptible to SQL Injections. You need to sanitize the $_GET[‘p’] before entering it into the database. At the very least, use mysql_real_escape_string().