TechQA.

Whats wrong with this query? Using ands

38 views Asked by At

I've got no errors, nothing, but for some reason my page is blank, thanks to this:

$userBusca = mysqli_query($conn, "SELECT * FROM account.login_admin WHERE login='".$login."' AND password='".$password."' AND key='".$key_load."'") or die(mysql_error());

The login and password are froma form, and the key_load is a string from a text file.

Is there anythin wrong with this?

EDIT: everything works without the key='".$key_load."'

php mysql
Original Q&A
1

There are 1 answers

3
Funk Forty Niner On BEST ANSWER

AND key

wrap it in ticks

AND `key`

Or rename it to something else, like the_key, but don't try keys because that too is a MySQL reserved word.

You're also mixing APIs with mysql_error() which should be mysqli_error($conn)

  • Those different MySQL APIs/functions do not intermix with each other.

Also, am hoping you are storing a safe hash.

If not:

For password storage, use CRYPT_BLOWFISH or PHP 5.5's password_hash() function. For PHP < 5.5 use the password_hash() compatibility pack.

Related Questions in PHP

Related Questions in MYSQL

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions