[Stanford]

It should be something like this:

pawn Код:

new szQuery[128];
mysql_format(ServerLine, szQuery,"UPDATE `houses` SET `variableone` = '%d', `variabletwo` = '%e'", 2, hello);
mysql_function_query(ServerLine, szQuery, true, "OnQueryFinish", "i", THREAD_NO_RESULT);

mysql_format is not a must, you can still format it using format(..), but the advantage is that you don't have to make mysql_escape_string after then if you have used %e is mysql_format.
so basically mysql_format formats the string safely.
I hope I helped any feedback is appreciated!