07.12.2012, 08:57
if you use the format() function:
replace '%s%'
width '%%%s%%'
edit:
This query you use is insecure.
For example my name is Tim
Someone else is called timmy
This query will return both results.
For this purpose, don't use LIKE
replace '%s%'
width '%%%s%%'
edit:
This query you use is insecure.
For example my name is Tim
Someone else is called timmy
This query will return both results.
For this purpose, don't use LIKE