ID: 34233
Updated by: [EMAIL PROTECTED]
-Summary: PDO ignores parameters when surrounded by closed
quotes
Reported By: php at sagi dot org
-Status: Open
+Status: Assigned
Bug Type: PDO related
-Operating System: Linux
+Operating System: *
-PHP Version: 5.1.0RC1
+PHP Version: 5CVS-2005-09-02
Assigned To: wez
Previous Comments:
------------------------------------------------------------------------
[2005-09-02 11:23:38] php at sagi dot org
Problem still exists with php5-200509020830, pgsql driver.
Did not test with any other driver.
------------------------------------------------------------------------
[2005-09-01 15:15:09] [EMAIL PROTECTED]
Please try using this CVS snapshot:
http://snaps.php.net/php5-latest.tar.gz
For Windows:
http://snaps.php.net/win32/php5-win32-latest.zip
This works for me in current PHP_5_1 branch using SQLite.
------------------------------------------------------------------------
[2005-08-24 13:23:57] php at sagi dot org
Description:
------------
Running PHP5.1.0RC1, postgresql 8 server with v7.4.7 client libs
(pretty sure native prepared statements are disabled).
When trying to execute this query:
$stmt = $db->prepare("SELECT ('0' || :param || '0')");
$stmt->execute(array(':param' => 123));
PDO actually executes this SQL statement: SELECT ('0' || :param ||
'0'), without replacing :param.
It seems like the parser thinks the whole "0' || :param || '0" part is
quoted, though its not.
The query "SELECT (0 || :param || 0)" works as expected.
------------------------------------------------------------------------
--
Edit this bug report at http://bugs.php.net/?id=34233&edit=1
