php - Update query in mysql

Question

Run my Query and i got an error.. my query is written below

$qry = "UPDATE Offer  SET offer_year='$offeryear', " .
"course_code='$coursecode', offer_list='$offerlist', " .
"WHERE offer_id ='$offerid'";

the error i got is

ERROR: Record could not be added
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WHERE offer_id ='1'' at line 1

done some changes on my update query i still got an error..

score 3 · Accepted Answer

如果您尝试一一检查，则在子句comma之前有多余的WHERE

$qry = "UPDATE Offer  SET offer_year='$offeryear', " .
       "course_code='$coursecode', offer_list='$offerlist' ". // remove comma here
       "WHERE offer_id ='$offerid'";

作为旁注，SQL Injection如果变量的值（s）来自外部，则查询很容易受到攻击。请看下面的文章，了解如何预防。通过使用PreparedStatements，您可以摆脱在值周围使用单引号。

如何防止PHP 中的 SQL 注入？

score 2 · Accepted Answer

像这样更新您的更新查询

$qry = "UPDATE Offer  
        SET offer_year='$offeryear',
            course_code='$coursecode', 
            offer_list='$offerlist' 
        WHERE offer_id ='$offerid'";

您在 WHERE 条件之前添加了额外的逗号

score 0 · Accepted Answer

试试这个（你有一个逗号后offerlist）：

$qry = "UPDATE Offer  SET offer_year='$offeryear', " .
"course_code='$coursecode', offer_list='$offerlist' " .
"WHERE offer_id ='$offerid'";

php - Update query in mysql

3 回答 3

Related

Reference