您的SQL語法有錯誤;檢查對應於你的MySQL服務器版本正確的語法使用手動附近的視角

Question

代碼：

$sql = " 
INSERT INTO book 
    (id 
    , account_no 
    , admin_id 
    , title 
    , author 
    , edition 
    , book_publisher 
    , book_copies 
    , book_isbn 
    , print_place 
    , book_year 
    , book_pages 
    , book_price 
    , entry_date 
    ) VALUES 
    ('' 
    , '$account_id' 
    , '$admin_id' 
    , '$title' 
    , '$author' 
    , '$edition' 
    , '$publisher' 
    , '$copies' 
    , '$isbn' 
    , '$place' 
    , '$year' 
    , '$pages' 
    , '$price' 
    , '$date' 
) 
"; 

在使用此查詢我收到此錯誤插入數據：

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 's Perspective','Randal E. Bryant','2','Prentice Hall','2','978-0136108047','USA'' at line 3

任何人都可以告訴如何解決這個錯誤？

Answer 1

我只是用mysql的這個功能插入值

mysql_real_escape_string()

，例如：

$title = mysql_real_escape_string($_POST['title']); 

它的工作...

Answer 2

書的名稱「程序員的角度來看」含有「'」字符，所以你必須逃脫適當的功能這個變量： http://php.net/manual/ru/function.mysql-escape-string.php例如，在PHP

的情況下

Answer 3

試試這個沒有插入id值：

$sql = "INSERT INTO `book` 
(`account_no`, `admin_id`, `title`, `author`, `edition`, `book_publisher`, `book_copies`, `book_isbn`, `print_place`, `book_year`, `book_pages`, `book_price`, `entry_date`) 
VALUES ('$account_id','$admin_id','$title','$author','$edition','$publisher','$copies','$isbn','$place','$year','$pages','$price','$date')"; 

Answer 4

您可以嘗試用\"代替'。下面的發佈商字段示例。只要申請，這將有可能「或」其他領域一樣

$sql = " 
INSERT INTO book 
    (id 
    , account_no 
    , admin_id 
    , title 
    , author 
    , edition 
    , book_publisher 
    , book_copies 
    , book_isbn 
    , print_place 
    , book_year 
    , book_pages 
    , book_price 
    , entry_date 
    ) VALUES 
    ('' 
    , '$account_id' 
    , '$admin_id' 
    , '$title' 
    , '$author' 
    , '$edition' 
    , \"$publisher\" 
    , '$copies' 
    , '$isbn' 
    , '$place' 
    , '$year' 
    , '$pages' 
    , '$price' 
    , '$date' 
) 
";