我有一个错误在我的SQL语法和无法弄清楚它是什么:错误在SQL语句中
代码:
$sqlsearch= " SELECT `idNum`,`First_Name`, FROM users WHERE `idNum`= '26130110' AND 'Password' ='$encpass';";
当我运行查询我得到这个错误:
error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'FROM users WHERE `idNum`= '26130110' AND 'Password' ='3fdf7be97917772020f87454f7' at line 1
使用phpmyadmin作为数据库。
阅读并遵循:http://stackoverflow.com/questions/60174/how-can-i-prevent-sql-injection-in-php?rq=1(在任何情况下,有一个额外的逗号' FROM')。 – user2864740