Query String wrong with use of prepare. Wordpress

Question

Query String wrong with use of prepare. Wordpress

Asked 5 years, 6 months ago

Viewed 35 times

1

I have a problem building a query here:

$sql = $wpdb->prepare("SELECT * FROM {$wpdb->prefix}imagens WHERE categorias LIKE %d limit %s, %s", array('%' . $wpdb->esc_like($var['busca']) . '%', $init, 45));

$registers = $wpdb->get_results($sql);

Returns nothing.

Before it was like this and I listed it perfectly:

$sql = "SELECT * FROM wp_imagens WHERE categorias LIKE '%".$var['busca']."%' $init,45";

$registers = $wpdb->get_results($sql);

What’s wrong with the prepare query?

With prepare do not need a execute no? Type: $wpdb->execute();

– Miyukii

2019/06/10 at 17:21

2 answers

Browser other questions tagged php mysql wordpress

You are not signed in. Login or sign up in order to post.

by Ivan Oliveira • 21 points · Answer 1 · 2019-06-10T17:03:12+00:00

You used the placeholder %d for a string parameter, where it is for integers. Use placeholder %s.

$sql = $wpdb->prepare("SELECT * FROM {$wpdb->prefix}imagens WHERE categorias LIKE %s limit %s, %s", array('%' . $wpdb->esc_like($var['busca']) . '%', $init, 45));

$registers = $wpdb->get_results($sql);

by Miyukii • **325** points · Answer 2 · 2019-06-10T17:29:24+00:00

I think you should run the query before getting the results:

$sql = $wpdb->prepare("SELECT * FROM {$wpdb->prefix}imagens WHERE categorias LIKE %d limit %s, %s", array('%' . $wpdb->esc_like($var['busca']) . '%', $init, 45));
$sql->execute();
$registers = $sql->get_results();