Hi!
I referred to this forum thread when trying to build a MySQL search query for my site:
But I just keep getting this syntax error:
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'2011-01-01\' AND \'2011-12-31\' ORDER BY project_descriptions.proj_date_final ' at line 1
Here is the essential part of the query:
WHERE project_descriptions.proj_date_final BETWEEN $value ORDER BY project_descriptions.proj_date_final ASC
$value is extracted from a select menu:
<select name="value">
<option value="'2007-01-01' AND '2013-12-31'">All Dates</option>
<option value="'2007-01-01' AND '2007-12-31'">2007</option>
<option value="'2008-01-01' AND '2008-12-31'">2008</option>
<option value="'2009-01-01' AND '2009-12-31'">2009</option>
<option value="'2010-01-01' AND '2010-12-31'">2010</option>
<option value="'2011-01-01' AND '2011-12-31'">2011</option>
<option value="'2007-01-01' AND '2012-08-01'">2012</option>
<option value="'2012-08-02' AND '2013-12-31'">Ongoing</option>
<select>
... and processed through this code:
//Grabs the date from the dropdown list
$value="'2007-01-01' AND '2013-12-31'";
if(isset($_POST['value'])) {
$value=$_POST['value'];
}
The default value of $value prints just fine when the page loads, but crashes when the form posts it. After much torubleshooting, I believe the culprit has something to do with the single quotes in the value attribute of the option tag.
Does anyone have a idea what could be going wrong? Or does anyone have a better idea for displaying this set of values?
