Php mysqli查询问题。mysqli\u real\u escape\u字符串错误
mysqli查询有问题-特别是Php mysqli查询问题。mysqli\u real\u escape\u字符串错误,php,mysqli,mysql-real-escape-string,Php,Mysqli,Mysql Real Escape String,mysqli查询有问题-特别是WHERE stoname=子句 这不起作用: $result = @mysqli_query($dbc, "SELECT * FROM thedb WHERE coname='{$_SESSION['user']}' AND stoname='{$_SESSION['store']}' "); 如果我回显$\u会话['store'],则它将打印为o\store,与数据库中的内容匹配。但这不起作用 但是,如果我回显mysqli\u real\u escape\u
WHERE stoname=$result = @mysqli_query($dbc, "SELECT * FROM thedb WHERE coname='{$_SESSION['user']}' AND stoname='{$_SESSION['store']}' ");
$\u会话['store']o\storemysqli\u real\u escape\u字符串($dbc,($\u SESSION['store'])o\\\\\'store$result = @mysqli_query($dbc, "SELECT * FROM thedb WHERE user='{$_SESSION['user']}' AND stoname='".mysqli_real_escape_string($dbc,($_SESSION['store']))."' ");
我承认我有工作代码,但我不明白为什么会这样。谁能解释一下我做错了什么?谢谢如果您的表确实包含
o\storemysqli\u real\u escape\u string()\''\# MySQL sees only an escaped ' and no \
SELECT * FROM thedb WHERE coname='something' AND stoname='o\'store'
stonameo'store\\mysqli\u real\u escape\u string()'\'\\\'\\\'\\\'\\# MySQL sees an escaped \ followed by an escaped '
SELECT * FROM thedb WHERE coname='something' AND stoname='o\\\'store'
我们不知道您的表最初是如何接收其值的,但我有一种预感,它是以转义形式存储的。如果字符串
o'storeo'store\mysqli\u real\u escape\u string()@mysqli_query()@o'storeo'storeo'storeaddslashes()o'storeo'storeaddslashesstoname=mysqli\u real\u escape\u string($dbc,trim(ucwords)(strtolower($\u POST['stoname')))@mysqli_query($dbc,“插入sto_详细信息(stoname)值(“$stoname”)”)似乎是所有的事情。@devsie-Hmm,您是否有旧PHP版本的一个邪恶的mis功能,它最终在5.4中被删除了。。。这是另一种可能的解释,但我并没有自愿这么做,因为现在这种情况不太常见了。