How can I use several SQL SELECT queries as WHERE clauses in php? - Phpmyadmin

Henkpenk
November 20, 2019
107 views
0 votes
2 Answers

$sql = "INSERT into x (y,z,t) 
VALUES ((SELECT userID FROM users WHERE username ='".$usersql."'),"
."'"."(SELECT itemID from items WHERE category ='".$category."'),"
."'".$amountdays."')";

Thank you for your time.

Answers

- AlexBarker
- November 20, 2019 at 9:47 pm
- 0 votes
0
A little bit of formatting will go a long way:
```
$sql = "INSERT into x 
  (
    y,
    z,
    t
  ) VALUES (
    (SELECT userID FROM users WHERE username = ?),
    (SELECT itemID from items WHERE category = ?),
    ?
  );
";
```
Login or Signup to reply.

- Ren233H246hle
- November 20, 2019 at 9:49 pm
- 0 votes
0
You should use PDO or mysqli with prepared statements. Then you can define variables for your values and set them after the query. That makes it more readable and you prevent sql injections in your code.

https://www.php.net/manual/de/pdo.prepared-statements.php
```
$stmt = $dbh->prepare("INSERT into x (y,z,t) 
VALUES (
    SELECT userID FROM users WHERE username = :username, 
    SELECT itemID FROM items WHERE category = :category, 
    :amountdays
)";

$stmt->bindParam(':username', $username);
$stmt->bindParam(':category', $category);
$stmt->bindParam(':amountdays', $amountdays);
```
Something like that.
Login or Signup to reply.

Please signup or login to give your own answer.

Click here to cancel reply.

How can I use several SQL SELECT queries as WHERE clauses in php? – Phpmyadmin

Answers