tags:

views:

43

answers:

1
Q: 

Troubleshoot MySQL query

I need help with this code, it doesent insert the values to my database. Probably a simple problem but it's late here in Sweden so I would appriciate if someone could have a look at this and tell me what's wrong:

    include "../../inc/mysql_config.php";
$to = mysql_real_escape_string($_POST['to']);
$message = mysql_real_escape_string($_POST['message']);

mysql_query("INSERT INTO messages (to, message) VALUES ('".$to."', '".$message."')");

Every variable have an value, double checked that and the mysql_config.php is working.

MySQL error code:

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'to, message) VALUES ('hubb', 'asd')' at line 1

+1  A: 

Something that will give you a clue is to use the mysql_error() function, e.g.

mysql_query("INSERT INTO messages (to, message) VALUES ('".$to."', '".$message."')") or die(mysql_error());

I would recommend using a more recent library such as MySQLi or PDO (preferably PDO). Both of these have support for prepared statements, which makes the whole string escaping thing much easier and much more consistent.

El Yobo  2010-06-09 02:15:19
+1 for pdo. It's also database agnostic, so you don't have to learn a new set of functions if you choose to write against a different database in the future.
Kibbee  2010-06-09 02:17:20
I'm working on a project where MySQL is the only option.El Yobo, I dont see any changes but the or die(mysql_error())...
Victor  2010-06-09 02:20:25
That's right; the die(mysql_error()) is not intended to fix your query, just to tell you the what MySQL thinks the error is. If you can't tell from that message, please update your question with the error message and we'll help you out.
El Yobo  2010-06-09 02:22:04
Updated and I still can't see the problem...
Victor  2010-06-09 02:24:23
Can you show the schema for the messages table? Just add the output of "DESC messages".
El Yobo  2010-06-09 02:26:33
And possibly printing out the whole statement that you're generating would be useful, i.e. copy and paste the mysql_query() line but put echo instead of mysql_query(). This way we can see the actual SQL that you're generating.
El Yobo  2010-06-09 02:27:35
Here: http://i49.tinypic.com/1zfy80.png
Victor  2010-06-09 02:30:27
Echo instead of mysql_query:INSERT INTO messages (to, message) VALUES ('hubb', 'asd')
Victor  2010-06-09 02:31:54
"to" is an integer in your schema, but your statement is passing it a string - this is probably your problem :)
El Yobo  2010-06-09 02:34:04
Damn, I blame again on the night and that I'm tired, thanks for your time and help! :)
Victor  2010-06-09 02:35:27
You're welcome - good luck :)
El Yobo  2010-06-09 02:37:03
Changed "to" to text but it still don't work, any guess?
Victor  2010-06-09 02:41:06
"to" is a special word in MySQL; use backticks around the word "to" instead and you'll be fine (i.e. "\`to\`") You might want to think about renaming it to "recipient" or something else instead.
El Yobo  2010-06-09 02:52:14
Yes, it works correctly now! Thanks for the info, I had no idea of that, switched the "to" to "recipient" instead, thanks once again for the help :)
Victor  2010-06-09 02:55:39
No problem - I should have spotted that first up rather than pointing you in the wrong direction :-/
El Yobo  2010-06-09 03:09:12

related questions

Remove Quotes and Commas from a String in MySQL
What's the best way of converting a mysql database to a sqlite one?
How do you manage databases in development, test, and production?
Multiple foreign keys?
Add 1 to a field (MySQL)
Issues using MS Access as a front-end to a MySQL database back-end?
Bigger than a char but smaller than a blob
How do I retrieve my MySQL username and password?
Long-time LAMP Developer moving to VB.NET
How do I Concatenate entire result sets in MySQL?
Full complete MySQL database replication? Ideas? What do people do?
SQL: Distribution of table in time
SQLite vs MySQL
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
Multiple Updates in MySQL
MySQL/Apache Error in PHP MySQL query
What all do I need to escape when sending a (My)SQL query?
Auto Generate Database Diagram MySQL
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
Python and MySQL
SQL Server 2005 implementation of MySQL REPLACE INTO?
How to export data from SQL Server 2005 to MySQL
Throw Error In MySQL Trigger
Binary Data in MySQL