How to use PHP string in mySQL LIKE query

Question

I am trying to find the number of rows that match a specific pattern. In this example, all that START with "123":

This is working:

$query = mysql_query("SELECT * FROM table WHERE the_number LIKE '123%'");
$count = mysql_num_rows($query);

The problem is the LIKE will vary, so I'm trying to define it in the script, then execute the query, but this is NOT working:

$prefix = "123";
$query = mysql_query("SELECT * FROM table WHERE the_number LIKE $prefix.'%'");
$count = mysql_num_rows($query);

How can I get this query to work properly in the second example?

EDIT: I've also tried it without the period (also not working):

$query = mysql_query("SELECT * FROM table WHERE the_number LIKE $prefix'%'");

User · Answer

DO it like   query   mysql query  SELECT   FROM table WHERE the number LIKE   yourPHPVAR        Do not forget the   at the end

User · Answer

You have the syntax wrong  there is no need to place a period inside a double-quoted string  Instead  it should be more like   query   mysql query  SELECT   FROM table WHERE the number LIKE   prefix        You can confirm this by printing out the string to see that it turns out identical to the first case   Of course it s not a good idea to simply inject variables into the query string like this because of the danger of SQL injection  At the very least you should manually escape the contents of the variable with mysql real escape string  which would make it look perhaps like this    sql   sprintf  SELECT   FROM table WHERE the number LIKE   s                     mysql real escape string  prefix     query   mysql query  sql     Note that inside the first argument of sprintf the percent sign needs to be doubled to end up appearing once in the result

[php] How to use PHP string in mySQL LIKE query?

The answer is

Examples related to php

Examples related to mysql

Examples related to sql

Examples related to string

Tags