MySQL - Printable Version
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Scripting Help (https://sampforum.blast.hk/forumdisplay.php?fid=12)
+--- Thread: MySQL (/showthread.php?tid=653291)
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Scripting Help (https://sampforum.blast.hk/forumdisplay.php?fid=12)
+--- Thread: MySQL (/showthread.php?tid=653291)
MySQL - Micko123 - 30.04.2018
Why is this not working
pawn Код:
new pass[24];
mysql_escape_string(inputtext, pass);
format(query, sizeof(query),"INSERT INTO `players` (`Name`, `Password`) VALUES ('%s', '%s')", GetName(playerid), pass, 1);
mysql_tquery(sql, query);
pawn Код:
[20:29:22] [DEBUG] pushed value 'INSERT INTO `players` (`Name`, `Password`) VALUES' onto AMX stack
[20:29:22] [DEBUG] processing internal specifier 's'
[20:29:22] [DEBUG] pushed value '' onto AMX stack
[20:29:22] [DEBUG] processing internal specifier 's'
[20:29:22] [DEBUG] pushed value 'You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '' at line 1' onto AMX stack
[20:29:22] [DEBUG] processing internal specifier 'c'
Re: MySQL - Fratello - 30.04.2018
Be aware that inserting string directly will make you vulnerable to SQL Injection. Instead of %s use %e (escape char).
You have 3 format arguments but only 2 have been specified .You're inserting all arguments as a string although you have an integer.