PDO 输入SQL语句提示语法错误 30
if(isset($_GET['action'])&&$_GET['action']=='ser'){$tmp=!empty($_POST)?$_POST:$_GET;$...
if(isset($_GET['action'] ) && $_GET['action']=='ser'){
$tmp= !empty($_POST) ? $_POST : $_GET;
$whr = array();
if(!empty($tmp['bookname'])){
$whr[]= " bookname LIKE '%{$tmp['bookname']}%'";
$args .="&bookname={$tmp['bookname']}";
}else{
$tmp['bookname'] = "";
}
if(!empty($tmp['author'])){
$whr[]= "author LIKE '%{$tmp['author']}%'";
$args .="&author={$tmp['author']}";
}else{
$tmp['author'] = "";
}
if(!empty($tmp['minprice'])){
$whr[]= "price >= '{$tmp['minprice']}'";
$args .="&minprice={$tmp['minprice']}";
}else{
$tmp['minprice'] = "";
}
if(!empty($tmp['maxprice'])){
$whr[]= "price <= '{$tmp['maxprice']}'";
$args .="&maxprice={$tmp['maxprice']}";
}else{
$tmp['maxprice'] = "";
} print_r($whr)."<br>";
if(!empty($whr)){
$where = "where ".implode(" and ",$whr);
}else{
$where = "";
}
}
try{
$ser= $pdo-> prepare ( "SELECT count(*) as total FROM `books` :where");
$ser-> bindParam("where",$where);
$ser-> execute();
}catch(PDOException $error){
echo "错误:".$error -> getMessage()."<br>";
}
print_r($ser);
$sere = $ser-> fetch(PDO::FETCH_ASSOC);
$page = new Page($sere['total'],$num,$args);
SQLSTATE[42000]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '''' at line 1
请问是什么问题导致的 展开
$tmp= !empty($_POST) ? $_POST : $_GET;
$whr = array();
if(!empty($tmp['bookname'])){
$whr[]= " bookname LIKE '%{$tmp['bookname']}%'";
$args .="&bookname={$tmp['bookname']}";
}else{
$tmp['bookname'] = "";
}
if(!empty($tmp['author'])){
$whr[]= "author LIKE '%{$tmp['author']}%'";
$args .="&author={$tmp['author']}";
}else{
$tmp['author'] = "";
}
if(!empty($tmp['minprice'])){
$whr[]= "price >= '{$tmp['minprice']}'";
$args .="&minprice={$tmp['minprice']}";
}else{
$tmp['minprice'] = "";
}
if(!empty($tmp['maxprice'])){
$whr[]= "price <= '{$tmp['maxprice']}'";
$args .="&maxprice={$tmp['maxprice']}";
}else{
$tmp['maxprice'] = "";
} print_r($whr)."<br>";
if(!empty($whr)){
$where = "where ".implode(" and ",$whr);
}else{
$where = "";
}
}
try{
$ser= $pdo-> prepare ( "SELECT count(*) as total FROM `books` :where");
$ser-> bindParam("where",$where);
$ser-> execute();
}catch(PDOException $error){
echo "错误:".$error -> getMessage()."<br>";
}
print_r($ser);
$sere = $ser-> fetch(PDO::FETCH_ASSOC);
$page = new Page($sere['total'],$num,$args);
SQLSTATE[42000]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '''' at line 1
请问是什么问题导致的 展开
推荐律师服务:
若未解决您的问题,请您详细描述您的问题,通过百度律临进行免费专业咨询
