why is mysqli insert not working?

php mysql sql sql-insert

10,823

Solution 1

Your table name should be enclosed with backtick since it contains a non-alphanumeric character.

INSERT INTO `listings-rent` (...) VALUES (...)

and also please do parameterize the values.

Solution 2

You table name has a - which is not a supported character for an unquoted table name in MySQL as stated in this documentation. Try this:

$mysqli->query("INSERT INTO `listings-rent` (number, road, postcode, price, type, bedrooms, agent, featured, keywords) VALUES ('$number','$road','$postcode','$price','$type','$bedrooms','$agent','$featured','$keywords')");

To view the error you can use echo $mysqli->error; mentioned here.

Solution 3

probably the `` are missing in your table name

i will suggest :

    if (TRUE == $mysqli->query("INSERT INTO `listings-rent` (number, road, postcode, price, type, bedrooms, agent, featured, keywords) VALUES ('$number','$road','$postcode','$price','$type','$bedrooms','$agent','$featured','$keywords')"))

        echo "its working!"

    else

         echo $mysqli->error;

this way you will see the problem

other option i would suggest it to print the query that fails and insert it manually using phpmyadmin and check why it isnt working

10,823

Author by

rpsep2

Updated on June 18, 2022

Comments

rpsep2 almost 2 years
I'm trying to insert data into my MySQL table, but with no luck. My code looks like:
```
$mysqli = mysqli_connect("localhost","login info");

if ($mysqli->connect_errno) {
    echo "Failed to connect to MySQL: (" . $mysqli->connect_errno . ") " . $mysqli->connect_error;
}

if (isset($_POST['submit'])) {
    $number = $_POST['number'];
    $road = $_POST['road'];
    $postcode=$_POST['postcode'];
    $price=$_POST['price'];
    $type=$_POST['type'];
    $bedrooms=$_POST['bedrooms'];
    $agent=$_POST['agent'];
    $featured=$_POST['featured'];
    $keywords=$_POST['keywords'];

    $mysqli->query("
        INSERT INTO listings-rent
            (number, road, postcode, price, type, bedrooms, agent, featured, keywords)
        VALUES
            ('$number','$road','$postcode','$price','$type','$bedrooms','$agent','$featured','$keywords')");
}
```
The connection is fine, returns no errors.
- Michal M over 11 years
  
  You need to read about SQL Injection vulnerability.
- Bruno over 11 years
  
  Why does it seem that so few PHP/MySQL developers have heard of parametrised queries?
- juergen d over 11 years
  
  Use backticks for your table name as @JW. suggested: INSERT INTO `listings-rent`
- John Woo over 11 years
  
  @juergend you certainly get the point. I don't know why others don't.
- John Woo over 11 years
  
  Permitted characters in quoted and unquoted identifiers
- nakajuice almost 7 years
  
  Unrelated to the question per se, but whoever comes this far having trouble with inserts make sure you got everything sorted out with transactions, it might be that you forget to commit the transaction
John Woo over 11 years

well I don't know why this answer gets massive downvotes :D
rpsep2 over 11 years

will accept as first to answer + correct. will look into parametized values - anyone suggest a good, easy to understand resource?
John Woo over 11 years

this article talks about How to prevent SQL injection in PHP? but clearly shows some basic example and links on the extensions.