"Hendrik Schumacher" schreef: > To avoid painful quoting the mysql reference manual suggest binding > the value like this: > > $sth = $dbh->prepare ("select name from toolbox where name LIKE > CONCAT('%', ? ,'%')");
That has issues similar to REGEXP, because the value can contain LIKE-wildcards such as "%" and "_". my $sql = <<'SQL'; SELECT name FROM toolbox AS t WHERE LOCATE(?, t.name) > 0 SQL my $sth = $dbh->prepare($sql); -- Affijn, Ruud "Gewoon is een tijger."