Error in your SQL syntax

Getting this error when using DW CS3 Insert Record Wizard
with CF8 and MySql 5
quote:
Error Executing Database Query.
You have an error in your SQL syntax; check the manual that
corresponds to your MySQL server version for the right syntax to
use near '"description") VALUES ( 'any' )' at line 1
The error occurred in
C:\ColdFusion8\wwwroot\mysqltest\untitled1.cfm: line 7
5 : VALUES (<cfif IsDefined("FORM.description") AND
#FORM.description# NEQ "">
6 : <cfqueryparam value="#FORM.description#"
cfsqltype="cf_sql_clob" maxlength="2147483647">
7 : <cfelse>
8 :
9 : </cfif>
SQLSTATE 42000
SQL INSERT INTO testedmemo ("description") VALUES ( (param 1)
VENDORERRORCODE 1064
DATASOURCE test

Try using backticks to escape the column name description.
Try removing the hash signs around FORM.description.
Edit: You can probably also omit the maxlength attribute in
your queryparam.

Similar Messages

You have an error in your SQL syntax;

i have a checkout page that i am trying to send to a payment centre but and getting the following error
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '16)' at line 1
can someone help and tell me what this means does it mean "conflict with columns definitions"
if so what can i do to solve the issue? do you need to see the page code?
thanks

<?php require_once('Connections/wibbles.php'); ?>
<?php
// do not cache
header ("Expires: Mon, 26 Jul 1997 05:00:00 GMT");                      // Date in the past
header ("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT"); // always modified
header ("Cache-Control: no-cache, must-revalidate");                    // /1.1
header ("Pragma: no-cache");                                            // /1.0
// *** Restrict Access To Page: Grant or deny access to this page
$FX_authorizedUsers=" ";
$FX_authFailedURL="login.php";
$FX_grantAccess=0;
if (!session_id()) session_start();
if (isset($_SESSION["MM_Username"])) {
if (true || !(isset($_SESSION["MM_UserAuthorization"])) || $_SESSION["MM_UserAuthorization"]=="" || strpos($FX_authorizedUsers, $_SESSION["MM_UserAuthorization"])) {
    $FX_grantAccess = 1;
if (!$FX_grantAccess) {
$FX_qsChar = "?";
if (strpos($FX_authFailedURL, "?")) $FX_qsChar = "&";
$FX_referrer = "Restricted Area";
$FX_authFailedURL = $FX_authFailedURL . $FX_qsChar . "accessdenied=" . urlencode($FX_referrer);
header("Location: $FX_authFailedURL");
exit;
// *** Retrieve X ID ***
if (!session_id()) session_start();
$XC_OrderIdSessionVar = "OrderID";
if (!isset($_SESSION[$XC_OrderIdSessionVar])) {
// Get a unique OrderID number and save to session.
$XC_tableName = "wibble_nextorder";
$XC_fieldName = "NextOrderID";
mysql_select_db($database_wibbles, $wibbles);
$XC_IdSource = "select " . $XC_fieldName . " from " . $XC_tableName;
$XC_rsId = mysql_query($XC_IdSource, $wibbles) or die(mysql_error());
$row_XC_rsId = mysql_fetch_assoc($XC_rsId);
$_SESSION[$XC_OrderIdSessionVar] = $row_XC_rsId[$XC_fieldName];
$$XC_OrderIdSessionVar = $_SESSION[$XC_OrderIdSessionVar];
session_register($XC_OrderIdSessionVar);
$XC_next = $_SESSION[$XC_OrderIdSessionVar] + 1;
$XC_upd = "update " . $XC_tableName . " set " . $XC_fieldName . " = " . $XC_next;
$XC_rsId = mysql_query($XC_upd, $wibbles) or die(mysql_error());
$XC_rsId = null;
// x limit validation
if (isset($_POST["XC_Limit"]) && $_POST["XC_Limit"] != "") {
$XC_limErr = stripslashes($_POST["XC_Limit"]);
if (isset($_GET['XC_SaveCartToTable'])) unset($_GET['XC_SaveCartToTable']);
unset($HTTP_POST_VARS);
unset($_POST);
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
return $theValue;
// x limit validation
if (isset($_POST["XC_Limit"]) && $_POST["XC_Limit"] != "") {
$XC_limErr = stripslashes($_POST["XC_Limit"]);
if (isset($_GET['XC_SaveCartToTable'])) unset($_GET['XC_SaveCartToTable']);
unset($_POST);
unset($_POST);
// Validate X amount
if (isset($_POST["XC_Amount"]) && $_POST["XC_Amount"] < 10) {
    if (isset($_GET['XC_SaveCartToTable'])) unset($_GET['XC_SaveCartToTable']);
    unset($_POST);
    unset($_POST);
    $XC_amErr = "The amount doesn't reach the allowed minimum of € 100.";
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
$theValue = (!get_magic_quotes_gpc()) ? addslashes($theValue) : $theValue;
switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
return $theValue;
$editFormAction = $_SERVER['PHP_SELF'];
if (isset($_SERVER['QUERY_STRING'])) {
$editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);
if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "form1")) {
$insertSQL = sprintf("INSERT INTO wibble_orders (OrderID, CustomerID, OrderDate, Shipping, Discount, Tax, Total) VALUES (%s, %s, %s, %s, %s, %s, %s)",
                       GetSQLValueString($_POST['OrderID'], "int"),
                       GetSQLValueString($_POST['CustomerID'], "int"),
                       GetSQLValueString($_POST['OrderDate'], "date"),
                       GetSQLValueString($_POST['Shipping'], "double"),
                       GetSQLValueString($_POST['Discount'], "double"),
                       GetSQLValueString($_POST['Tax'], "double"),
                       GetSQLValueString($_POST['XC_Amount'], "double"));
mysql_select_db($database_wibbles, $wibbles);
$Result1 = mysql_query($insertSQL, $wibbles) or die(mysql_error());
// *** X Shopping Cart ***
$useSessions = true;
$XCName = "wibbleJakeCart";
$XCTimeout = 30;
$XC_ColNames=array("ProductID","Quantity","Name","Color","Price","MinQty","Discount","Stoc k","Total");
$XC_ComputedCols=array("","","","","","","","","Price");
require_once('XCInc/XCart.inc');
$colname_rsCustomer = "1";
if (isset($_SESSION['MM_UserAuthorization'])) {
$colname_rsCustomer = $_SESSION['MM_UserAuthorization'];
mysql_select_db($database_wibbles, $wibbles);
$query_rsCustomer = sprintf("SELECT * FROM wibble_customers WHERE CustomerID = %s", GetSQLValueString($colname_rsCustomer, "int"));
$rsCustomer = mysql_query($query_rsCustomer, $wibbles) or die(mysql_error());
$row_rsCustomer = mysql_fetch_assoc($rsCustomer);
$totalRows_rsCustomer = mysql_num_rows($rsCustomer);
// *** Redirect if XCart is Empty ***
$XC_RedirectIfEmpty = "shopping-cart.php";
if (isset($_SERVER["QUERY_STRING"])) {
$XC_RedirectIfEmpty .= "?" . htmlentities($_SERVER["QUERY_STRING"]);
if (isset(${$XCName}["contents"]) && (sizeof(${$XCName}["contents"][0]) == 0)) header("Location: " . $XC_RedirectIfEmpty);
// *** Repeat XCart region *** (do not remove this label)
// validate x limit
$XC_invalidItems = "";
$XC_lim = "";
$iCol = array_search("Quantity",${$XCName}["ColNames"]);
$iSrc = array_search("Stock",${$XCName}["ColNames"]);
for ($iVal=0; $iVal<sizeof(${$XCName}["contents"][0]); $iVal++) {
if (${$XCName}["contents"][$iCol][$iVal] > ${$XCName}["contents"][$iSrc][$iVal]) {
    if ($XC_invalidItems != "") $XC_invalidItems .= "-";
    $XC_invalidItems .= (string) ($iVal+1);
    if ($XC_lim != "") $XC_lim .= "-";
    $XC_lim .= (string) ${$XCName}["contents"][$iSrc][$iVal];
if ($XC_invalidItems != "") {
$XC_invalidItems = "(".$XC_invalidItems.")";
$XC_lim = "(".$XC_lim.")";
$x_limErr = "The item(s) $XC_invalidItems exceed the available stock of $XC_lim";
// *** Add shipping based on Range
mysql_select_db($database_wibbles, $wibbles);
$XC_sourceVal = $XCart_sumTotal;
$XC_ShipSource = "SELECT Shipping FROM wibble_shipbyprice WHERE MinPurchase < " . $XC_sourceVal . " AND MaxPurchase >= " . $XC_sourceVal;
$XC_rsShip = mysql_query($XC_ShipSource, $wibbles) or die(mysql_error());
$row_XC_rsShip = mysql_fetch_assoc($XC_rsShip);
$XC_Shipping = $row_XC_rsShip['Shipping'];
$XC_rsShip = null;
// *** Add Referenced Sales Tax
mysql_select_db($database_wibbles, $wibbles);
$XC_taxSource = "SELECT Tax FROM wibble_tax WHERE Country = '" . $row_rsCustomer['Country'] . "'";
$XC_rsTax = mysql_query($XC_taxSource, $wibbles) or die(mysql_error());
$row_XC_rsTax = mysql_fetch_assoc($XC_rsTax);
$XC_Tax = $row_XC_rsTax['Tax'];
$XC_rsTax = null;
$XC_SalesTax = $XC_Tax*($XCart_sumTotal+$XC_Shipping-$XC_Discount);
// *** Compute Grand Total
$XC_GranTotal = $XCart_sumTotal+$XC_SalesTax+$XC_Shipping-$XC_Discount;
// *** Format table as Europe style
if (!session_id()) session_start();
// set header
$XC_header = "<style type=\"text/css\">\n\n</style>\n";
$XC_header .= "<table width=\"520\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n";
$XC_header .= " <tr>\n    <td>\n";
$XC_header .= "<table width=\"100%\" border=\"0\" cellspacing=\"2\" cellpadding=\"2\">\n";
$XC_header .= " <tr>\n    <td> </td>\n    <td align=\"right\"> </td>\n </tr>\n";
$XC_header .= " <tr>\n    <td>Order n. <b>" . $_SESSION["OrderID"] . "</b></td>\n    <td align=\"right\"> " . date("d/m/Y") . "</td>\n </tr>\n";
$XC_header .= " <tr>\n    <td> </td>\n    <td> </td>\n </tr>\n";
$XC_header .= " <tr>\n    <td colspan=\"2\" align=\"Left\">";
$XC_header .= $row_rsCustomer["FirstName"] . " ";
$XC_header .= $row_rsCustomer["LastName"] . " <br>";
$XC_header .= $row_rsCustomer["Address"] . " <br>";
$XC_header .= $row_rsCustomer["ZIP"] . " ";
$XC_header .= $row_rsCustomer["City"] . " ";
$XC_header .= $row_rsCustomer["State"] . " <br>";
$XC_header .= $row_rsCustomer["Country"] . " <br>";
$XC_header .= "</td>\n </tr>\n</table>\n";
$XC_header .= "<table border=\"0\" cellspacing=\"2\" cellpadding=\"2\">\n";
$XC_header .= " <tr>\n    <td colspan=\"5\"> </td>\n </tr>\n";
$XC_header .= " <tr>\n    <td colspan=\"5\">Cart contents: </td>\n </tr>\n";
// set cart data
$XCartData = " <tr>\n";
$XCartData .= "    <th width=\"30\" bgcolor=\"#CC6600\"><font color=\"white\">Qty</font></th>\n";
$XCartData .= "    <th width=\"310\" bgcolor=\"#CC6600\"><font color=\"white\">Description</font></th>\n";
$XCartData .= "    <th width=\"60\" bgcolor=\"#CC6600\"><font color=\"white\">Price</font></th>\n";
$XCartData .= "    <th width=\"40\" bgcolor=\"#CC6600\"><font color=\"white\">Disc</font></th>\n";
$XCartData .= "    <th width=\"80\" bgcolor=\"#CC6600\"><font color=\"white\">Total</font></th>\n";
$XCartData .= " </tr>\n";
for ($jRow=0; $jRow<sizeof(${$XCName}["contents"][0]); $jRow++) {
require('XCInc/RepeatXMailRegion.inc');
$XCartData .= " <tr>\n";
$XCartData .= "    <td align=\"Center\" bgcolor=\"#FFFF99\">" . ${$XCName}["contents"][1][$jRow] . "</td>\n";
$XCartData .= "    <td align=\"Left\" bgcolor=\"#FFFF99\">" . ${$XCName}["contents"][2][$jRow] . "</td>\n";
$XCartData .= "    <td align=\"Right\" bgcolor=\"#FFFF99\">€ " . number_format(${$XCName}["contents"][4][$jRow], 2, ',', '.') . "</td>\n";
$XCartData .= "    <td align=\"Center\" bgcolor=\"#FFFF99\">" . ${$XCName}["contents"][6][$jRow] . "</td>\n";
$XCartData .= "    <td align=\"Right\" bgcolor=\"#FFFF99\">€ " . number_format(${$XCName}["contents"][8][$jRow], 2, ',', '.') . "</td>\n";
$XCartData .= " </tr>\n";
// set footer
$XC_footer = " <tr>\n    <td colspan=\"4\" align=\"right\"><b> SubTotal </b></td>\n    <td align=\"right\" bgcolor=\"#FFFF99\"><b> € " . number_format($XCart_sumTotal, 2, ',', '.') . "</b></td>\n </tr>\n";
$XC_footer .= " <tr>\n    <td colspan=\"4\" align=\"right\"> Shipping </td>\n    <td align=\"right\" bgcolor=\"#FFFF99\"> € " . number_format($XC_Shipping, 2, ',', '.') . "</td>\n </tr>\n";
$XC_footer .= " <tr>\n    <td colspan=\"4\" align=\"right\">  </td>\n    <td align=\"right\" bgcolor=\"#FFFF99\"> </td>\n </tr>\n";
$XC_footer .= " <tr>\n    <td colspan=\"4\" align=\"right\"> Sales Tax </td>\n    <td align=\"right\" bgcolor=\"#FFFF99\"> € " . number_format($XC_SalesTax, 2, ',', '.') . "</td>\n </tr>\n";
$XC_footer .= " <tr>\n    <td colspan=\"4\" align=\"right\"><b> Grand Total </b></td>\n    <td align=\"right\" bgcolor=\"#FFFF99\"><b> € " . number_format($XC_GranTotal, 2, ',', '.') . "</b></td>\n </tr>\n";
$XC_footer .= " <tr>\n    <td colspan=\"5\"> </td>\n </tr>\n";
$XC_footer .= "</table>\n    </td>\n </tr>\n</table>\n";
// join all
if (isset($_SESSION["XC_CartMail"])) session_unregister("XC_CartMail");
$XC_CartMail = $XC_header . $XCartData . $XC_footer;
$_SESSION["XC_CartMail"] = $XC_CartMail;
session_register("XC_CartMail");
// *** Save XCart contents to table ***
require_once('XCInc/XCsaveAction.inc');
if (isset($_GET['XC_SaveCartToTable']) && ($_GET['XC_SaveCartToTable'] == "1")) {
$XC_destColName = array("ProductID","Quantity","","Color","UnitPrice","","Discount","","Total");
$XC_destColType = array("str","num","str","str","num","num","num","num","num");
$XC_orderId = $_SESSION['OrderID'];
$XC_tableName = "wibble_orderdetails";
$XC_OrderIDCol = "OrderID";
$XC_OrderIDType = "num";
$XC_AddToTableRedirect = "thanks.php";
$XC_conName = "wibbles";
require_once('XCInc/SaveXCartToTable.inc');
// clone a session
if (!session_id()) session_start();
if (isset($_SESSION["OrderNum"])) session_unregister("OrderNum");
if (isset($_SESSION["OrderID"])) {
$OrderNum = $_SESSION["OrderID"];
$_SESSION["OrderNum"] = $OrderNum;
session_register("OrderNum");
function DoFormatCurrency($theObject,$NumDigitsAfterDecimal,$DecimalSeparator,$GroupDigits,$Curren cySymbol) {
          $currencyFormat=$CurrencySymbol.number_format($theObject,$NumDigitsAfterDecimal,$Dec imalSeparator,$GroupDigits);
          return ($currencyFormat);
function DoFormatPercent($theObject,$NumDigitsAfterDecimal,$DecimalSeparator,$GroupDigits) {
          $currencyFormat=number_format($theObject*100,$NumDigitsAfterDecimal,$DecimalSeparato r,$GroupDigits).'%';
          return ($currencyFormat);
?>

Error when making connection: You have an error in your SQL syntax;

I'm getting this error when trying to make a simple Database Connection:
SQLException: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '????????????????????????????????' at line 1
SQLState: 42000
VendorError: 1064
I tried a different driver and got the same error with more "?"s in the "use near....." part.
import java.sql.Connection;
import java.sql.DriverManager;
import java.sql.SQLException;
public class DBTest{ public static void main(String[] args){ try{ Class.forName("com.mysql.jdbc.Driver").newInstance(); } catch(Exception e){ System.out.println(e); System.exit(0); } Connection conn = null; try { conn = DriverManager.getConnection("jdbc:mysql://localhost:3306/testDB?" + "user=root&password=password"); conn.close(); } catch (SQLException ex) { // handle any errors System.out.println("SQLException: " + ex.getMessage()); System.out.println("SQLState: " + ex.getSQLState()); System.out.println("VendorError: " + ex.getErrorCode()); } } }
MySQL Server Version:
Server version: 5.0.67-0ubuntu6 (Ubuntu)

cotton.m wrote:
c0c0 wrote:
I've tried Drivers 5.1 , 5.0 and 3.1 now and I get the same problem every time. I've tried switching databases, users, etc but always get this same error:
java.sql.SQLException: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '????????????????' at line 1
I have the latest version of mysql from the Ubuntu repositories. Do I have to configure that a certain way? It isn't the URL which I supply that it does not like because I've tried multiple URLs and they all give me the same error when I supply the correct information.
Any help is greatly appreciated.This is.. very odd.
I have to ask are you really, really sure that your code is just as you posted? Are you sure you aren't running a query of some sort? My guess at this point would be some sort of rather bizarre encoding issue. I'm sorry but I can't reproduce your behaviour, I am connecting to different MySQL instances with no problem from Ubuntu..
Yes the code is exactly the same as what I posted (except hiding actual usernames and passwords)
I've even tried to connect to a remote mysql server and get the same behavior (If I type in the wrong database it alerts me there is no db of that name, if I lg in with the wrong password it alerts me cant login ____ @ ______, when I have all the correct information I get that same old error) , I'm somewhat convinced it's my driver now. I thought at first it was the way I had mysql configured but now I think it's my driver or the way I have everything installed. I simply put the driver location in the classpath and do the command:
export set CLASSPATH=/usr/share/tomcat5.5-webapps/ROOT/lib/mysql-connector-java-5.1.7-bin.jar
Was this the wrong way to go about doing it? I'm not currently running tomcat I simply put it there because a book said that's where it should go for tomcat, but I wanted to first try this not running tomcat with just a simple normal Java example.

Error in your SQL syntax........near '' at line 1

i have a payment success page that should update the database when a payment is correct but am getting the error
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1
on the success.php page, i have looked at the code but cant seem to see the error, i have changed the ' ' to "" on line one but that didn't do it so was hoping someone could look and see the incorrect syntax
<?php require_once('Connections/chic.php'); ?>
<?php
// *** Update the stock ***
$details_table = "chicJewls_orderdetails";
$ID_column = "UniqueID";
$details_prodID = "ProductID";
$details_qty = "Quantity";
$XStock_TableName = "chicJewls_products";
$XStock_FieldName = "Stock";
$XStock_unID = "ProductID";
if (!session_id()) session_start();
if (isset($_SESSION["orderID"])) {
mysql_select_db($database_chic, $chic);
$details_Source = "select * from " . $details_table . " where " . $ID_column . " = " . $_SESSION["orderID"];
$detailsRS = mysql_query($details_Source, $chic) or die(mysql_error());
$row_detailsRS = mysql_fetch_assoc($detailsRS);
do {
    $XStock_qtySource = "select " . $XStock_FieldName . " from " . $XStock_TableName . " where " . $XStock_unID . " = " .$row_detailsRS[$details_prodID] . "";
    $XStock_rsUpd = mysql_query($XStock_qtySource, $chic) or die(mysql_error());
    $row_XStock_rsUpd = mysql_fetch_assoc($XStock_rsUpd);
    if ($row_XStock_rsUpd[$XStock_FieldName] > 0) {
      $XStock_new = $row_XStock_rsUpd[$XStock_FieldName] - $row_detailsRS[$details_qty];
      if ($XStock_new < 0) $XStock_new = 0;
      $XStock_UpdSource = "update " . $XStock_TableName . " set " . $XStock_FieldName . " = " . $XStock_new . " where " . $XStock_unID . " = " .$row_detailsRS[$details_prodID] . "";
      $XStock_rsUpd = mysql_query($XStock_UpdSource, $chic) or die(mysql_error());
} while ($row_detailsRS = mysql_fetch_assoc($detailsRS));
$XStock_rsUpd = null;
$detailsRS = null;
session_unregister("orderID");
?>
thanks in advance

No, I'm talking about the dot before.
Change this
.$row_detailsRS[$details_prodID] . "";
to this
. $row_detailsRS[$details_prodID] . "";
in both places.

ERROR 1064 (42000): You have an error in your SQL syntax;

Folks,
I stucked here while granting the permissions.
could you please throw any ideas why this...
mysql> GRANT SELECT, INSERT, DELETE ON database TO prod@localhost IDENTIFIED BY
'Welcome1'
-> FLUSH PRIVILEGES;
ERROR 1064 (42000): You have an error in your SQL syntax; check the manual that
corresponds to your MySQL server version for the right syntax to use near 'datab
ase TO prod@localhost IDENTIFIED BY 'Welcome1'
FLUSH PRIVILEGES' at line 1
mysql> \q

wrong forum mate ! need to post in SQL forums

Non riesco a ricevere acquisti fatti su itunes, mi da questo errore :erreu : you have an error in your sql syntax; checkthe manual that corresponds to your mysql server version for the right syntax to use near from news order by id desc at line. cosa devo

non riesco a ricevere acquisti fatti su itunes, mi da questo errore :erreu : you have an error in your sql syntax; checkthe manual that corresponds to your mysql server version for the right syntax to use near from news order by id desc at line. cosa devo fare? grazie

Start Firefox in [[Safe Mode]] to check if one of the add-ons is causing the problem (switch to the DEFAULT theme: Tools > Add-ons > Themes).
* Don't make any changes on the Safe mode start window.
See:
* [[Troubleshooting extensions and themes]]

Multiple Step Error Caused by SQL Syntax?

Hi All:
I am getting a multiple step error when I do this:
rs.Fields("MyField").Value = MyValue
I finally tracked down the error to being caused by this syntax:
SELECT a.* FROM MyTable a
or
SELECT a.MyField FROM MyTable a
However, this syntax works just fine:
SELECT * FROM MyTable
or
SELECT MyField FROM MyTable
So what's the big deal here?
Note: Both statements work fine in SQL Server; Oracle chokes on the aliased one.
Doug.

Hi Doug,
I am having very similar problem while runnig the following statments:
SELECT DESCRIPTION FROM ITEM, LOCATION WHERE ITEM.LOCATIONID = LOCATION.LOCATIONID "Updatable"
SELECT DESCRIPTION FROM ITEM JOIN LOCATION ON ITEM.LOCATIONID = LOCATION.LOCATIONID " Not updatable"!
if you figure out something pls let me know!
Abdullah Obeid.
Hi All:
I am getting a multiple step error when I do this:
rs.Fields("MyField").Value = MyValue
I finally tracked down the error to being caused by this syntax:
SELECT a.* FROM MyTable a
or
SELECT a.MyField FROM MyTable a
However, this syntax works just fine:
SELECT * FROM MyTable
or
SELECT MyField FROM MyTable
So what's the big deal here?
Note: Both statements work fine in SQL Server; Oracle chokes on the aliased one.
Doug.

Error in SQL syntax

Hi all,
I have an SQL database which up untli about 20 minutes ago was fine. I have a complex contact form whic is (was) all finished. I have added a couple more tables to the database (now totalling 4), in order to create a registration / login page.
(Is it okay to have 4 tables in 1 database?)
Anyway. I have just finished with the login stuff and all works fine. I decided to have a quick look around the site and make sure everything is okay - but for some reason when I navigate to the "complex contact form" - I get this message:
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'ASCE LIMIT 0, 150' at line 1
The registration wizard and login pages still work, and in general the site is browseable. But this page will not work and I have no idea why?
Does anyone have any suggestion? All I have done since it worked is add 2 other tables as I said....
Thank you / please help!
NJ

There was a typo in my previous post. There should be only one $ in $query_recordsetName. I should also have added that "recordsetName" is the name of your recordset. I would have thought it was obvious, but I see you're limiting the number of results, so the name is slightly different.
The other thing is that you have not put it where I told you. Apart from that...
$query_rscontacts1 = "SELECT contacts.Logo, contacts.Industries,
contacts.coverage, contacts.misc, contacts.id, contacts.email,
contacts.website FROM contacts WHERE {$NXTFilter_rscontacts1} ORDER BY
{$NXTSort_rscontacts1}";
$query_limit_rscontacts1 = sprintf("%s LIMIT %d, %d", $query_rscontacts1, $startRow_rscontacts1, $maxRows_rscontacts1);
echo $query_limit_rscontacts1 . '<br />';
$rscontacts1 = mysql_query($query_limit_rscontacts1, $Contacts) or die(mysql_error());

Error with SQL syntax

I'm trying to get onto a website i could normally get into but all it says is this
you have an error in your SQL syntax;check the manual that corresponds to your MySQL server version for the right syntax to use near') and adlx.'action' != 2' at line 1
I'm not good with computers and I've never heard of this i need some help, I may just be stupid but i seriously need some help here
preferably instructions for a hp computer

This looks to be an error with the web site you are visiting, not a problem with your PC. I suggest you contact the web site owner. The error suggests a problem with programming against a MySQL database, which is not a Microsoft technology.
Dan Guzman, SQL Server MVP, http://www.dbdelta.com

SQL syntax error when creating record insertion form

Good day,
I was hoping someone could help me. I am trying to create a record insertion form on a website to insert data into a database table. When attempting to create the form, I am getting the following error:
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ' Organization, Office, Department, Phone, EmailAddress, JobTitle, `OfficialMaili' at line 1
Not sure what is going on. I am running windows 8 and DW cs5 w/ MYSQL. I am testing on a local server prior to pushing to the remote server.
Thank you for your assistance and please advise any code you would like me to send.

Here is all the code from this particular webpage. I apologize, I am too stupid to realize which parts are SQL vice PHP vice HTML:
<?php require_once('Connections/group4.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
   if (PHP_VERSION < 6) {
     $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
switch ($theType) {
     case "text":
       $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
       break;
     case "long":
     case "int":
       $theValue = ($theValue != "") ? intval($theValue) : "NULL";
       break;
     case "double":
       $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
       break;
     case "date":
       $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
       break;
     case "defined":
       $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
       break;
   return $theValue;
$editFormAction = $_SERVER['PHP_SELF'];
if (isset($_SERVER['QUERY_STRING'])) {
   $editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);
if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "form1")) {
   $insertSQL = sprintf("INSERT INTO individual (Grade, LastName, FirstName, M.I., Organization, Office, Department, Phone, EmailAddress, JobTitle, `OfficialMailing Address`, Citizenship, Designation, IATrainingComplete, IADate) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",
                        GetSQLValueString($_POST['Grade'], "text"),
                        GetSQLValueString($_POST['LastName'], "text"),
                        GetSQLValueString($_POST['FirstName'], "text"),
                        GetSQLValueString($_POST['MI'], "text"),
                        GetSQLValueString($_POST['Organization'], "text"),
                        GetSQLValueString($_POST['Office'], "text"),
                        GetSQLValueString($_POST['Department'], "text"),
                        GetSQLValueString($_POST['Phone'], "double"),
                        GetSQLValueString($_POST['EmailAddress'], "text"),
                        GetSQLValueString($_POST['JobTitle'], "text"),
                        GetSQLValueString($_POST['OfficialMailing_Address'], "text"),
                        GetSQLValueString($_POST['Citizenship'], "text"),
                        GetSQLValueString($_POST['Designation'], "text"),
                        GetSQLValueString($_POST['IATrainingComplete'], "text"),
                        GetSQLValueString($_POST['IADate'], "text"));
mysql_select_db($database_group4, $group4);
   $Result1 = mysql_query($insertSQL, $group4) or die(mysql_error());
$insertGoTo = "index.php";
   if (isset($_SERVER['QUERY_STRING'])) {
     $insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?";
     $insertGoTo .= $_SERVER['QUERY_STRING'];
   header(sprintf("Location: %s", $insertGoTo));
mysql_select_db($database_group4, $group4);
$query_rsIndividual = "SELECT * FROM individual ORDER BY IndividualNumber ASC";
$rsIndividual = mysql_query($query_rsIndividual, $group4) or die(mysql_error());
$row_rsIndividual = mysql_fetch_assoc($rsIndividual);
$totalRows_rsIndividual = mysql_num_rows($rsIndividual);
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Contact Us</title>
<script src="SpryAssets/SpryMenuBar.js" type="text/javascript"></script>
<link href="SpryAssets/SpryMenuBarHorizontal.css" rel="stylesheet" type="text/css" />
<style type="text/css">
.header {
font-size: 36px;
text-decoration: underline;
.quote {
font-size: 18px;
font-style: italic;
.tablethisone {
margin: 5px;
padding: 25px;
border: medium none #000;
text-align: center;
</style>
</head>
<body>
<p><img src="Images/EGA.png" width="227" height="222" alt="EGA" /><span class="header">SAAR Tracking System
</span></p>
<ul id="MenuBar1" class="MenuBarHorizontal">
   <li><a href="index.php">Home</a> </li>
   <li><a href="search.php">Search</a></li>
   <li><a href="contact.php">Contact Us</a> </li>
</ul>
<p> </p>
<p>PRIVACY ACT STATEMENT</p>
<p>Executive Order 10450, 9397; and Public Law 99-474, the Computer Fraud and Abuse Act.
   To record names, signatures, and other identifiers for the purpose of validating the trustworthiness of individuals requesting
   access to Department of Defense (DoD) systems and information. NOTE: Records may be maintained in both electronic
   and/or paper form.</p>
<p> </p>
<p> </p>
<form action="<?php echo $editFormAction; ?>" method="post" name="form1" id="form1">
   <table align="center">
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Grade:</td>
       <td><input type="text" name="Grade" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">LastName:</td>
       <td><input type="text" name="LastName" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">FirstName:</td>
       <td><input type="text" name="FirstName" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">M.I.:</td>
       <td><input type="text" name="MI" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Organization:</td>
       <td><input type="text" name="Organization" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Office:</td>
       <td><input type="text" name="Office" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Department:</td>
       <td><input type="text" name="Department" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Phone:</td>
       <td><input type="text" name="Phone" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">EmailAddress:</td>
       <td><input type="text" name="EmailAddress" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">JobTitle:</td>
       <td><input type="text" name="JobTitle" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">OfficialMailing Address:</td>
       <td><input type="text" name="OfficialMailing_Address" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Citizenship:</td>
       <td><input type="text" name="Citizenship" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">Designation:</td>
       <td><input type="text" name="Designation" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">IATrainingComplete:</td>
       <td><input type="text" name="IATrainingComplete" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right">IADate:</td>
       <td><input type="text" name="IADate" value="" size="32" /></td>
     </tr>
     <tr valign="baseline">
       <td nowrap="nowrap" align="right"> </td>
       <td><input type="submit" value="Insert record" /></td>
     </tr>
   </table>
   <input type="hidden" name="MM_insert" value="form1" />
</form>
<p> </p>
<p> </p>
<p> </p>
<p> </p>
<p> </p>
<p>Disclosure of this information is voluntary; however, failure to provide the requested information may impede, delay or
prevent further processing of this request.</p>
<p class="quote">"Be polite, be professional, but have a plan to kill everybody you meet" General James Mattis</p>
<p> </p>
<script type="text/javascript">
var MenuBar1 = new Spry.Widget.MenuBar("MenuBar1", {imgDown:"SpryAssets/SpryMenuBarDownHover.gif", imgRight:"SpryAssets/SpryMenuBarRightHover.gif"});
</script>
</body>
</html>
<?php
mysql_free_result($rsIndividual);
?>

Sql syntax in jsp

Hey All!
Im trying ot use a a bean to select data from a table where email != ''
The funny thing is my code works in one couple of jsp/bean but not in another, even though it's the exact same code.
This works
The Bean:
String sql = "SELECT applicantid, firstname, lastname, dob, " +
"homestreet, homestate, homecity, homezip, " +
"email, college, major, standing, " +
"graddate, schstreet, schcity, schstate, " +
"schzip, schphone, resOne, resTwo, " +
"resThree, waiver, bioletter, password, " +
"homephone " +
"FROM apptest " +
"WHERE " + filter + " " +
"ORDER BY " + orderBy;
The filter is the String "email != ''" and orderBy ="lastname"
Works perfectly!
But when I use similar code for another table
Code:
String sql = "SELECT providerid, applicantid, pin, title, " +
"company, firstname, lastname, phone, " +
"email, recletter " +
"FROM provtest " +
"WHERE " + filter + " " +
"ORDER BY " + orderBy;
with filter as "email != '' " and orderBy = "lastname"
I get the following error:
Error in findRecords ProviderUtility(Syntax error or access violation, message from server: "You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1")
Keep in mind that email != '' (these are single quotes)
I am really baffled.
Ike

"The funny thing is my code works in one couple of jsp/bean but not in another, even though it's the exact same code."
If it's EXACTLY the same code, what did you need another bean for?
If you needed a new bean, then it's not exactly the same.
Why aren't you using PreparedStatement to escape strings and dates for you?
Believe the engine when it tells you there's a mistake.
%

SQL Syntax Issue

This is a weird one!!!
I am using Dreamweaver/php/mysql and I am in the process of
developing the forms that edit articles that have been added to the
CMS. I have a page called edit.php which has the current list of
articles. Each article has a radio button next to it and have given
it an id of "id" (which is what I called it in the DB). On
selecting this article, and hitting submit, this should load up a
editnews2.php. On editnews2.php I have a filtered recordset that
filters on "id " so that it loads the article selected into the
editnews2 form. I have bound the fields in the form to the related
fields in the recordset.
When I test this out using the TEST button, in the recordset
pop-up window and enter an id, it retrieves the correct article
from the database. However, when I do it using the forms, I get an
error:
"You have an error in your SQL syntax; check the manual that
corresponds to your Mysql server version for the right syntax to
use near " at line 1"
This is really weird because the recordset works and
retreives the data no problems, which mean the connection file path
is correct and other parameters are correct. I have tried lots of
times to try and figure this out but I am now really stuck.
Could anyone shed some light on this one?
regards
orange22

orange22 wrote:
> When I test this out using the TEST button, in the
recordset pop-up window and
> enter an id, it retrieves the correct article from the
database. However, when
> I do it using the forms, I get an error:
>
> "You have an error in your SQL syntax; check the manual
that corresponds to
> your Mysql server version for the right syntax to use
near " at line 1"
What that means is that the way Dreamweaver is building your
query
contains a mistake - probably an extra quotation mark or
something like
that.
Go into Code view and use echo to display the actual SQL
query being
sent to the database. That will give you a clue as to where
to start
troubleshooting the rest of the code.
David Powers, Adobe Community Expert
Author, "The Essential Guide to Dreamweaver CS3" (friends of
ED)
Author, "PHP Solutions" (friends of ED)
http://foundationphp.com/

Sql syntax

Can someone kindly tell me the correct syntax for this statement?
String sql = "UPDATE answers SET q1 = '" + value + "'" + "WHERE EXISTS (SELECT * FROM users u, answers a WHERE u.username = a.username)";
int numRows = stmt.executeUpdate(sql);
The error I am getting is:
Caught SQL Exception: java.sql.SQLException: Syntax error or access violation: You have an error in your SQL syntax near 'EXISTS SELECT * FROM users u, answers a WHERE u.username = a.username' at line 1

I am using a cookie instead. But, when I use an update, my values are the same for each column, not the appropriate values. Is my syntax below correct?
String delete = request.getParameter("delete");
String question = request.getParameter("question");
String value = request.getParameter("R");
Cookie[] cookies = request.getCookies();
if (delete.equals("no") && !value.equals(""))
if(cookies != null)
for (int i = 0; i < cookies.length; i++)
String name = cookies.getName();
String valuecook = cookies[i].getValue();
//Cookie getUser = new Cookie(name, valuecook);
String sql = "UPDATE answers SET q1 ='" + value + "' " + "WHERE USERNAME = '" + valuecook + "'";
int numRows = stmt.executeUpdate(sql);
String sql2 = "UPDATE answers SET q2 ='" + value + "' " + "WHERE USERNAME = '" + valuecook + "'";
int numRows2 = stmt.executeUpdate(sql2);
String sql3 = "UPDATE answers SET q3 ='" + value + "' " + "WHERE USERNAME = '" + valuecook + "'";
int numRows3 = stmt.executeUpdate(sql3);
out.println(value);
out.println(valuecook);
// UPDATE table_name SET column_name1 = value1 [, column_name2 = value2, etc.] WHERE criteria
out.println("Record has been inserted");
String nextPage = request.getParameter("nextPage");

CR2011 - SQL Syntax Error

After updating our ODBC driver to match our current Unidata database version (7.1), we now get the following message from Crystal Reports 2011 on many of our existing reports:
"Failed to retrieve data from the database. Details: 37000:[Rocket U2][U2ODBC][1401249]Error ID: 21 Severity: ERROR Facility: DBCAPERR - SQL Syntax error. [Database Vendor Code: 5365440]
The generated SQL statement follows:
SELECT "INVCDETH_NF"."ITEM_NBR", "ITEMMAST_NF"."ITEM_DESC", "INVCDETH_NF"."SHIPPED_QUANTITY", "INVCDETH_NF"."Z_INV_DATE", "INVCDETH_NF"."Z_COMPANY", "INVCHDRH_NF"."INVOICE_TYPE", "INVCDETH_NF"."EXTENDED_PRICE", "INVCDETH_NF"."COST_OF_SALES", "INVCDETH_NF"."Z_PCC_CODE", "INVCDETH_NF"."DISCOUNT_AMOUNT", "INVCDETH_NF"."WAREHOUSE", "ITEMMAST_NF"."PRICE_CODE", "INVCHDRH_NF"."INVOICE_NBR", "INVCHDRH_NF"."REFERENCE_NBR"
FROM ("Administrators"."ITEMMAST_NF" "ITEMMAST_NF" INNER JOIN "Administrators"."INVCDETH_NF" "INVCDETH_NF" ON "ITEMMAST_NF"."ITEM_NBR"="INVCDETH_NF"."ITEM_NBR") INNER JOIN "Administrators"."INVCHDRH_NF" "INVCHDRH_NF" ON ((("INVCDETH_NF"."INVOICE_NBR"="INVCHDRH_NF"."INVOICE_NBR") AND ("INVCDETH_NF"."INV_HEADER_ID"="INVCHDRH_NF"."INV_HEADER_ID")) AND ("INVCDETH_NF"."REFERENCE_NBR"="INVCHDRH_NF"."REFERENCE_NBR")) AND ("INVCDETH_NF"."RELEASE_NBR"="INVCHDRH_NF"."RELEASE_NBR")
WHERE "INVCDETH_NF"."Z_COMPANY"='01' AND "INVCDETH_NF"."WAREHOUSE"='086' AND ("INVCDETH_NF"."Z_INV_DATE">={d '2013-12-08'} AND "INVCDETH_NF"."Z_INV_DATE"<={d '2013-12-26'})
ORDER BY "INVCDETH_NF"."WAREHOUSE"
I downloaded the trial version of CR2013 and get the same result. Can anyone shed any light? Thanks!

Yes, in that the query is what Crystal generated from the report being built in the designer. I simply copied it from the Database > Show SQL Query screen. Since the error I'm receiving is a SQL Syntax Error, I thought it would be appropriate to show it.
The bottom line is that because I am not very knowledgeable in SQL, I can't look at the query and identify the error. However, I am responsible for supporting CR in-house. Naturally, I have reported this to Rocket (the makers of the ODBC driver) but haven't received their reply yet.

MS SQL - Syntax error for valid query

I have a problem with the second query in this code (gives me
a syntax error in my HAVING line)
<cfquery name="getDupes" datasource="#application.ODBC1#"
dbtype="ODBC" username="#application.userNameODBC1#"
password="#application.userPassODBC1#">
SELECT *
FROM view_FormCount
WHERE formCount >= 2
ORDER BY formNum
</cfquery>
<cfset variables.lstForms = "">
<cfoutput query="getDupes">
<cfset variables.lstForms=
listAppend(variables.lstForms,"'#getDupes.formNum#'")>
</cfoutput>
<cfset variables.whereClause = "(formNum =
#ReplaceNoCase(variables.lstForms,',',' OR formNum =
','ALL')#)">
<cfquery name="getDetails"
datasource="#application.ODBC1#" dbtype="ODBC"
username="#application.userNameODBC1#"
password="#application.userPassODBC1#">
SELECT tblForms.formNum, tblForms.formName,
tblForms.formCustNum, tblCompanies.companyAbbr
FROM tblForms INNER JOIN tblCompanies ON tblForms.formCustNum
= tblCompanies.companyNum
GROUP BY tblForms.formNum, tblForms.formName,
tblForms.formCustNum, tblCompanies.companyAbbr
HAVING #variables.whereClause#
ORDER BY tblForms.formNum, tblForms.formCustNum
</cfquery>
Now, the really odd thing is if I just take the query text
out of the CFQUERY tags and use CFOUTPUT instead (to see in my
browser what query is getting executed) I get a query that I can
paste into Enterprise Mgr and runs fine.
I can even paste the resulting text into my code in a CFQUERY
and CF will run it fine.
In other words, the dynamic version query gives me an error,
but if I just output the SQL statement, copy-and-paste that into
the CFQUERY that's erroring out (replacing what's there) to run as
a static query, it works fine (sample of static query below).
The error I get when I try to do it dynamically is "Error
Executing Database Query. [Macromedia][SQLServer JDBC
Driver][SQLServer]Line 4: Incorrect syntax near '10169318'. The
error occurred on line 21." which is where the HAVING clause
starts.
SELECT tblForms.formNum, tblForms.formName,
tblForms.formCustNum, tblCompanies.companyAbbr FROM tblForms INNER
JOIN tblCompanies ON tblForms.formCustNum = tblCompanies.companyNum
GROUP BY tblForms.formNum, tblForms.formName, tblForms.formCustNum,
tblCompanies.companyAbbr HAVING (formNum = '10169318' OR formNum =
'1016CONCERTA' OR formNum = '1016NSAIDS' OR formNum =
'1016STRATTERA' OR formNum = '1016WELLBUTRIN' OR formNum =
'18504211' OR formNum = '185093807' OR formNum = '73208565' OR
formNum = '732120027' OR formNum = '7322154' OR formNum = '7323402'
OR formNum = '7323522' OR formNum = '73238900' OR formNum =
'7324211' OR formNum = '7324211S' OR formNum = '7324265' OR formNum
= '73242891' OR formNum = '732434341' OR formNum = '732434342' OR
formNum = '73243435' OR formNum = '73243436' OR formNum =
'73243439' OR formNum = '73243440' OR formNum = '73243441' OR
formNum = '73243442' OR formNum = '73243443' OR formNum = '7324359'
OR formNum = '7324360' OR formNum = '7324370' OR formNum =
'7324560' OR formNum = '7324959' OR formNum = '7326411ptreg' OR
formNum = '7326599' OR formNum = '7326600' OR formNum = '7326620'
OR formNum = '7326707' OR formNum = '7326931' OR formNum =
'7328410' OR formNum = '732851031TOP' OR formNum = '7328512' OR
formNum = '7328548' OR formNum = '7328548P2' OR formNum =
'7328548P3' OR formNum = '7328548P4' OR formNum = '73289400' OR
formNum = '73290D' OR formNum = '7329154' OR formNum =
'73291544JHS' OR formNum = '73291545JHS' OR formNum =
'73291546JHSMH' OR formNum = '73291547JHSMH' OR formNum = '7329174'
OR formNum = '7329308' OR formNum = '7329402' OR formNum =
'7329424' OR formNum = '7329455' OR formNum = '7329520' OR formNum
= '7329539' OR formNum = '73297701JH' OR formNum = '73298273' OR
formNum = '73298400' OR formNum = '73298403' OR formNum =
'73298404' OR formNum = '7329883' OR formNum = '73298860' OR
formNum = '7329887' OR formNum = '73298974' OR formNum = '7329899'
OR formNum = '7329899S' OR formNum = '73299190' OR formNum =
'7329987' OR formNum = '7329999PTO' OR formNum = '732AV5160' OR
formNum = '732CMHFRAZ' OR formNum = '732HIPAA' OR formNum =
'732HIPAAFLYERS' OR formNum = '734HEART' OR formNum = '7444711' OR
formNum = '7449230' OR formNum = '744HR4991' OR formNum =
'7538014MI' OR formNum = '77511044' OR formNum = '77511045' OR
formNum = '775stampnochange' OR formNum = '80851001BLUE' OR formNum
= '80MR4200' OR formNum = '80MR4273' OR formNum = '80MR4274' OR
formNum = '80MR4300' OR formNum = '80MR9934' OR formNum =
'80MR9935' OR formNum = '80SHC100' OR formNum = '80SHC4301' OR
formNum = '80SHC9830' OR formNum = '80SHC9832') ORDER BY
tblForms.formNum, tblForms.formCustNum

AWFrueh1808 wrote:
> OK, that's simple enough. But then I'm really confused
as to why the query in
> my original post/example didn't work.
>
> The only single quotes in my #whereClause# variable were
wrapped around each
> varchar value in the WHERE clause (well, HAVING) as in
HAVING formNum = '12345'
> OR formNum = '54321'
>
> I never used a single quote within the value itself. And
yet
> preservesinglequotes fixed it. So what was CF doing? Why
did the single
> quotes still show up in the error msg - and in the right
place?
>
As I said the default behavior is to escape the quotes in
your variables
as data. So the default output of your SQL statement, before
preserveSingleQuotes() would be like this.
HAVING formNum = ''12345'' OR formNum = ''54321''
As you can see that is not the desired results in your case.
In your
case you have the proper number of single quotes in your
string and you
do not want any added. You want to preserve them so to say.
Thus
adding preserveSingleQuotes() around your whereClase
variable, i.e.
preserveSingleQuotes(whereClause) says do not add any quotes,
keep them
all single.

Error in your SQL syntax

Similar Messages

Maybe you are looking for