SQL Error

BIOSTALL

Hi, i'm getting an SQL error when i use the following code:

$searchposter = htmlentities(trim($_GET['searchposter']));
				$searchmessage = htmlentities(trim($_GET['searchmessage']));
				if ($searchposter!="") {
					$wherequery = "WHERE poster='$searchposter'";
				}
				if ($searchmessage!="") {
					if ($wherequery=="") {
						$wherequery = "WHERE message LIKE '%$searchmessage%'";
					}else{
						$wherequery = " AND message LIKE '%$searchmessage%'";
					}
				}
			$result = mysql_query("SELECT *, DATE_FORMAT(dateposted, '%d/%m/%Y') AS date1, TIME_FORMAT(timeposted, '%H:%i') AS time1 FROM messageboard $wherequery ORDER BY dateposted DESC, timeposted DESC LIMIT 10", $connection) or die(mysql_error());

The error is:

You have an error in your SQL syntax near 'AND message LIKE '%love%' ORDER BY dateposted DESC, timeposted DESC LIMIT 10' at line 1

I only get the error when both $searchposter and $searchmessage are not empty. If only one of them is filled in, then it works fine.

Anyone see a reason why i'd be getting this error please?

Thanks, BIOSTALL

Trs2988

Well, you keep using "=" which overwrites the whole variable. I think you meant to be using ".=" which would append.