您的 SQL 语法有错误;查看与您的 MariaDB 服务器版本相对应的手册,了解使用 nea 的正确语法
我收到此错误//错误
ERRORINSERT INTO new_comp_reg (phno , fullname , address , dept , desc) VALUES ('','','','','')您的 SQL 语法有错误;检查与您的 MariaDB 服务器版本相对应的手册,以在第 1 行的 'desc) VALUES ('','','' ,'','')' 附近使用正确的语法
ERRORINSERT INTO new_comp_reg (phno , fullname , address , dept , desc) VALUES ('','','','','') You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 'desc) VALUES ('','','' ,'','')' at line 1
PHP
<?php
$servername = 'mysql.hostinger.in';
$username = '';
$password = '';
$dbname = 'u424351292_icrcm';
if(isset($_POST['submit']))
{
$phone_no = $_POST['phno'];
$full_name = $_POST['fullname'];
$location = $_POST['address'];
$department = $_POST['dept'];
$description = $_POST['desc'];
}
$conn = new mysqli($servername,$username,$password,$dbname);
if($conn->connect_error)
{
die("Connection Failed" . $conn->connect_error);
}
$sql = "INSERT INTO new_comp_reg (phno , fullname , address , dept , desc) VALUES ('$phone_no' , '$full_name' , '$location' , '$department' , '$description')";
if($conn->query($sql) === TRUE)
{
echo "Complaint Registered";
}
else
{
echo "ERROR".$sql."<br>".$conn->error;
}
$conn->close();
?>
//错误
ERRORINSERT INTO new_comp_reg (phno , fullname , address , dept , desc) VALUES ('','','','','')您的 SQL 语法有错误;检查与您的 MariaDB 服务器版本相对应的手册,以在第 1 行的 'desc) VALUES ('','','' ,'','')' 附近使用正确的语法
ERRORINSERT INTO new_comp_reg (phno , fullname , address , dept , desc) VALUES ('','','','','') You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 'desc) VALUES ('','','' ,'','')' at line 1
推荐答案
desc
是一个 MySQL 中的保留关键字,需要用反引号转义.
desc
is a reserved keyword in MySQL and needs to be escaped by backticks.
INSERT INTO new_comp_reg (..., `desc`) VALUES (...)
例如,或者将您的列名更改为 description
.
or change your column name to description
for instance.
顺便说一句,您没有转义您的用户输入,这可能导致语法错误和 SQL 注入.使用准备好的语句.
BTW you are not escaping your user input which could lead to syntax errors and SQL injections. Use Prepared Statements.
相关文章