O, let’s try a canonical answer. Call to a member function (or expects parameter 1 to be mysqli_result, boolean given for the procedural style) is not an error itself but just a symptom, for some other problem. This very error message means that no object was created where should. So – there was a problem … Read more
The error means that the 2nd argument is expected to be a reference to a variable. Since you are not handing a variable but an integer of value 0, it generates said error. To circumvent this do: $a = 0; $update->bind_param(“is”, $a, $selectedDate); //LINE 13 In case you want to understand what is happening, as … Read more
From the mysqli::prepare docs: The parameter markers must be bound to application variables using mysqli_stmt_bind_param() and/or mysqli_stmt_bind_result() before executing the statement or fetching rows. bind_param docs. i.e.: $name=”one”; $age = 1; $stmt = $mysqli->prepare(“INSERT INTO users (name, age) VALUES (?,?)”); // bind parameters. I’m guessing ‘string’ & ‘integer’, but read documentation. $stmt->bind_param(‘si’, $name, $age); // … Read more
Reasons why you should use MySQLi extension instead of the MySQL extension are many: MySQLi gives you prepared statements – a safer way of sending data to MySQL and protecting you from SQL injection. This alone should be enough for always choosing MySQLi over MySQL. MySQLi enables most of the MySQL features. MySQLi is object … Read more
It’s not recommended to use reserved words for names in SQL. So I call the count result cnt instead. As your function is scalar, i.e. you expect only one value back, you can use: $count = $mysqli->query(“select count(*) as cnt from cars”)->fetch_object()->cnt;
$mysqli->prepare(“SELECT username, password FROM users WHERE username = ?”); $username = $_POST[‘name’]; $stmt->bind_param(‘s’ ,$username); $stmt->execute(); $stmt->bind_result($username, $password); Your select syntax was wrong, the correct syntax is SELECT field1, field2, field3 FROM TABLE WHERE field1 = ? AND field2 = ? To select more fields simply separate them by a comma and not an AND
Simply do it sudo apt install php-mysqli It works perfectly and it is version independent
Well, one reason prepare() can fail is if the sql statement sent to it is not valid in the current DB. prepare() will then return false. Eg – if the table name is not correct or one or more field in the query does not exist.
Here’s how you properly fetch the result $param = “%{$_POST[‘user’]}%”; $stmt = $db->prepare(“SELECT id,username FROM users WHERE username LIKE ?”); $stmt->bind_param(“s”, $param); $stmt->execute(); $stmt->bind_result($id,$username); while ($stmt->fetch()) { echo “Id: {$id}, Username: {$username}”; } or you can also do: $param = “%{$_POST[‘user’]}%”; $stmt = $db->prepare(“SELECT id, username FROM users WHERE username LIKE ?”); $stmt->bind_param(“s”, $param); $stmt->execute(); … Read more
You should be able to greatly increase the speed by putting your inserts inside a transaction. You can also move your prepare and bind statements outside of your loop. $array = array(“array”, “with”, “about”, “2000”, “values”); $query = “INSERT INTO table (link) VALUES (?)”; $stmt = $mysqli->prepare($query); $stmt ->bind_param(“s”, $one); $mysqli->query(“START TRANSACTION”); foreach ($array as … Read more