Member Avatar for minoesje

Hello

I'm trying to create an update statement where it updates inlever_datum with a date from now + 7 days later I already have this

     case "0":
                        //doesn't work
                        $id = $_GET['id'];
                        $date = date("Y-m-d");
                        $new_date = date('Y-m-d', strtotime($date. '+7 day'));
                        // je moest '' eromheen zetten
                        $sql = "UPDATE apparatuur SET inlever_datum = ´$new_date´, uitleen_datum = NOW() WHERE id=$id";
                        $stmt = $conn->prepare($sql);
                        //var_dump($stmt);// false???
                        $stmt->bind_param('si', $inlever_datum , $id);
                        $status = $stmt->execute();
                        break;



         this works and it will put the date into my db but from my knowledge this isn't really safe especially the '$new_date' part
         My question is how do I make this safer I have tried doing
         //doesn't work
                    $id = $_GET['id'];
                    $date = date("Y-m-d");
                    $new_date = date('Y-m-d', strtotime($date. '+7 day'));
                    // je moest '' eromheen zetten
                    $sql = "UPDATE apparatuur SET inlever_datum = ?, uitleen_datum = NOW() WHERE id=$id";
                    $stmt = $conn->prepare($sql);
                    //var_dump($stmt);// false???
                    $stmt->bind_param('si', $inlever_datum , $id);
                    $status = $stmt->execute();
                    break;

                  But this doesn't work
  • 2 Contributors
  • 1 Reply
  • 58 Views
  • 3 Days Discussion Span
  • Latest Post Latest Post by AndrisP
Member Avatar for AndrisP

Manage date in SQL query:

$id = $_GET['id'];
$sql = "UPDATE apparatuur SET inlever_datum = date(current_date()+7), uitleen_datum = NOW() WHERE id= ? ";
$stmt = $conn->prepare($sql);
$stmt->bind_param('i', $id);
$status = $stmt->execute();
Edited by AndrisP
Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.