php - How to disable % from outputting everything -


hey have search field searching database, saw problem after testing if put "%" in search field output have ready searching. there way disable this? 

<h3>search share details</h3> <p>you may search either company name or issue date</p>  <form name = "search" method = "get"> <input type = "text" name = "share" size = "40" maxlength="50"> <input type = "submit" value = "search"> </form>

getting contents connecting db, fetching results , printing

function get_contents() {     if(isset($_get['share']))     {         $conn = db_connect();         $shares = get_sharesearch($conn);         db_disconnect($conn);         $contents = array('shares' => $shares);         return $contents;     }     else     {         $conn = db_connect();         $shares = get_share($conn);         db_disconnect($conn);         $contents = array('shares' => $shares);         return $contents;     } }   function print_contents($contents)  {      if(count($contents['shares']) == 0)     {         echo "<script type = 'text/javascript'>alert('sorry share not found! q_q');</script>";      }     else     {     ?>            <table>             <tr>                 <th>company name</th>                 <th>rate</th>                 <th>issue date</th>              </tr>     <?php     foreach ($contents['shares'] $share)      {         print "<tr>";         $identifier = urlencode($share['shareid']);         print "<td><a href='share-details.php?id={$identifier}'>{$share['company']}</a></td>";         print "<td>{$share['rate']}</td>";          $issue_date = $share['issue_date'];         $issue_date = $issue_date === null ? "&lt; not available &gt;" : $issue_date;         print "<td>{$issue_date}</td>";         print "</tr>";     }     ?>         </table>     <?php     } } //require("shares.php"); require("search.php"); ?>

query itself

function get_sharesearch($conn) {  $id = ""; if(isset($_get['share'])){$id = $_get['share'];} $statement = db_create_statement($conn, "select distinct * shares  where(company '{$id}' or issue_date '{$id}')"); $resultset = db_fetch_resultset($statement);  return $resultset;

}

escape it

this refers putting character in front of denote it's meant taken literally:

original statement

select * ikeatable chair '5% off';

escaped version

select * ikeatable chair '5\% off' escape '\';

yours

select distinct * shares where(company '\%{$id}' or issue_date '\%{$id}') escape '\'

Comments

Post a Comment

Popular posts from this blog

jquery - How do you format the date used in the popover widget title of FullCalendar? -

Image
in fullcalendar, how format date used in popover widget title when clicking '+n more'? code: <div class="fc-popover fc-more-popover"> <div class="fc-header fc-widget-header"> <span class="fc-close fc-icon fc-icon-x"></span> <span class="fc-title">tuesday, april 7</span> ... </div> ... </div> you use daypopoverformat that. determines date format of title of popover created eventlimitclick option. must date formatting string. default value "dddd, mmmm d" english , "ll" other languages.
Read more

asp.net mvc - SSO between MVCForum and Umbraco7 -

i need integrate sso between mvcforum (forum of company) , umbraco7 (manages cms company). however struggling shared authentication work. tried several ways suggested on other threads still not running expected. here did: 1. in mvcforum (forum.mywebsite.com) 1.1. machine key in web.xml: <machinekey validationkey="the same key umbraco7" decryptionkey="the same key umbraco7" validation="sha1" decryption="aes" /> 1.2. authenticate forms in web.xml <forms name="my-sso-auth" protection="all" path="/" timeout="43200" domain="forum.mywebsite.com" loginurl="/members/logon" enablecrossappredirects="true" /> 2. in umbraco7 (news.mywebsite.com) 2.1. machine key in web.xml: <machinekey validationkey="the same key mvcforum" decryptionkey="the same key mvcforum" validation="sha1" decryption="aes" /> 2.2. a...
Read more

Python Tkinter keyboard using bind -

i have problem using bind option can click button in keyboard, , call function once key pressed. tried taking other codes have similar purpose , saw i'm doing pretty same, though still have problem must've missed. thankful if me this. here's code: # -*- coding: utf-8 -*- #imports tkinter import * pil import imagetk, image import time import tkmessagebox #===========================================================================================================================================# #tkinter class class app(frame): def __init__(self, master=none): frame.__init__(self, master) self.pack() #===========================================================================================================================================# #game pieces classes class board: def __init__(self, rows = 7, columns = 6, picture_height = none, picture_width = none): self.rows = rows self.columns = columns self.picture ...
Read more