How can the SQL query in the PHP code be modified to search for a specific name entered in an input field?

To search for a specific name entered in an input field, you can modify the SQL query in the PHP code to use a parameterized query with a placeholder for the name input. This allows you to dynamically insert the entered name into the query before execution, preventing SQL injection attacks and ensuring accurate search results.

&lt;?php
// Assuming the name input is submitted via POST method
if(isset($_POST[&#039;search_name&#039;])) {
    $name = $_POST[&#039;search_name&#039;];
    
    // Establish a database connection
    $conn = new PDO(&quot;mysql:host=localhost;dbname=mydatabase&quot;, &quot;username&quot;, &quot;password&quot;);

    // Prepare a parameterized SQL query to search for the entered name
    $stmt = $conn-&gt;prepare(&quot;SELECT * FROM users WHERE name = :name&quot;);
    $stmt-&gt;bindParam(&#039;:name&#039;, $name);
    $stmt-&gt;execute();

    // Fetch and display the search results
    while($row = $stmt-&gt;fetch()) {
        echo $row[&#039;name&#039;] . &quot;&lt;br&gt;&quot;;
    }
}
?&gt;

Keywords

PHP SQL query input field search modification

How can the SQL query in the PHP code be modified to search for a specific name entered in an input field?

Keywords

Related Questions