"Hendrik Schumacher" schreef:
> To avoid painful quoting the mysql reference manual suggest binding
> the value like this:
>
> $sth = $dbh->prepare ("select name from toolbox where name LIKE
> CONCAT('%', ? ,'%')");
That has issues similar to REGEXP, because the value can contain
LIKE-wildcards such as "%" and "_".
my $sql = <<'SQL';
SELECT
name
FROM
toolbox AS t
WHERE
LOCATE(?, t.name) > 0
SQL
my $sth = $dbh->prepare($sql);
--
Affijn, Ruud
"Gewoon is een tijger."
