Problem with PHP query using MD5

caliban200

I am having a problem using the MD5 function in MySQL with PHP. An encrypted value is passed via the URL, and is used as part of the WHERE clause in the INSERT statement.

$queryStr = "SELECT COUNT( userID ) AS vcount FROM users WHERE userID = '{$GET['id']}' AND md5(firstName) = '{$GET['vcode']}'";

$sql = mysql_result(mysql_query($queryStr),0);

The query runs in MySQL using MD5 on the column, but I get an error in PHP.

Error with MySQL query Unknown column 'id' in 'where clause'

Any help or suggestions would be apreciated.

BooRadLey

Try this:

$queryStr = "SELECT COUNT( userID ) AS vcount FROM users WHERE userID = " . $_GET['id'] . " AND md5(firstName) = '" . $_GET['vcode'] . "'";

I think the problem is unescaped quotes or something.
Hope this helps,

Brad

caliban200

Thanks for the code. I tried it, but got the same error id code #9 from the query executed in PHP. I printed the query to the screen and was able to copy and paste it into phpMyAdmin and got it to run.

eli03

try to check first your table, maybe the column name doesn't match to the variable that you declare in your code.