|
|
Posted by Colin McKinnon on 02/19/07 20:17
Rik wrote:
> On Sat, 17 Feb 2007 14:36:28 +0100, Colin McKinnon
> <colin.thisisnotmysurname@ntlworld.deletemeunlessURaBot.com> wrote:
>
>>
>> I'm trying to work out if it is possible to use the latter as a primitive
>> sort of data-binding (I know its not going to prevent injection). I would
>> create $query before the value of $something is finalised, then apply the
>> interpolation operation on $query to get it to substitute the variable at
>> that point.
>>
>> Is there an easy way to do this with PHP?
>
> $querystring = 'SELECT * FROM `table` WHERE `afield` = \'%s\'';
> $explicit_query = sprintf($querystring,'something');
>
> Look at he manual for more options (display as integere, swap around
> position or variables etc.):<http://www.php.net/sprintf>
Thanks Rik
C.
Navigation:
[Reply to this message]
|