Wpdb query with dynamic table name

I will start with the question.

From the sql error output we see this SELECT * FROM WHERE dbID = 719

This tells us that $sanitized_search_language has no value, so check it first.

Now for the BIG problem with this query!

You used get_results with a sql query that has variables as is, get_results doesn’t escape the variables.

You must use prepare when passing variables into an sql query in order to prevent sql injections.

see wpdb::get_results, the first user contribution shows a great example on how to implement this

Related Posts:

  1. How do you properly prepare a %LIKE% SQL statement?
  2. $wpdb and MySQL Create Trigger
  3. wpdb->prepare function remove single quote for %s in SQL statment
  4. Alternative to mysql_real_escape_string
  5. Increment value (value = value+1) of $wpdb->update
  6. wpdb Custom Meta Data with 2 conditions
  7. wpdb prepare syntax
  8. SQL query not working in alphabetical post title/content search
  9. MySQL LIKE not working
  10. Proper way to work with wpdb to get user’s firstname
  11. How to check for empty and not a failure
  12. Database: Custom table: sprintf value for DateTime column
  13. Converting mysql to $wpdb
  14. WP_USE_EXT_MYSQL
  15. wpdb insert and boolean fields
  16. Join new table with SQL query
  17. writing inner join in wpdb
  18. How to split the a table in database?
  19. MySQL Rank & $wpdb
  20. When WordPress Default table, Echo Success. When Plugin Table, Echo Blank
  21. How do I join a $wpdb query with user meta using default value if not exist?
  22. How to translate this mySQL query to $wpdb query
  23. $wpdb select all meta for each post
  24. $wpdb to insert html form information
  25. Proper usage of $wpdb->update()?
  26. WordPress(wpdb class) and mysql stored procedures
  27. Can’t run database query
  28. Using WPDB->Insert()
  29. Active DB queries in WordPress?
  30. How to stop $wpdb from prepending database name
  31. WordPress $wpdb get posts from category and sort by custom meta
  32. How to get INSERT errors from $wpdb?
  33. Getting Error Trying to Create Table
  34. How to set MYSQLI_OPT_INT_AND_FLOAT_NATIVE option
  35. Understanding custom php that reads from WP MYSQL
  36. How to insert dash (-) into database using wpdb and new_to_publish hook?
  37. $wpdb->get_var multiple queries in one database check
  38. List users with the most posts in the last 30 days
  39. Insert two row in wordpress database
  40. WordPress $wpdb no result
  41. PHP variables in mysql query
  42. MySQL ‘duplicate entry’ error
  43. User set date and time from frontend doesn’t get stored into database
  44. get posts whether meta_key exists or not
  45. when using $wpdb sudden connection rejection without changing anything. Access denied, with errors from repair tool
  46. How to search usermeta table
  47. How to add virtual column in wpdb get_result statement
  48. wpdb insert into point column in db
  49. WPDB delivers wrong results from complex queries
  50. $wpdb post type and term query only works when there are no dashes or spaces in the term slug and title
  51. CONCAT_WS in custom sql query
  52. Geographical proximity query using post_meta
  53. MySQL Select within WP Page template
  54. Saving custom term value to the database in new table
  55. why is $wpdb->update() causing a DB error from within wp_set_password()
  56. $wpdb->get_var returns 0
  57. Initialization of table in database using ‘CREATE … IF NOT EXISTS’
  58. MySQL Error: : ‘Access denied for user ‘root’@’localhost’
  59. Access Denied for User ‘root’@’localhost’ (using password: YES) – No Privileges?
  60. How to use MySQL DECIMAL?
  61. MySQL ERROR 1290 (HY000) –secure-file-priv option
  62. mysql Foreign key constraint is incorrectly formed error
  63. mysql: SOURCE error 2?
  64. How to avoid MySQL ‘Deadlock found when trying to get lock; try restarting transaction’
  65. MySQL foreach loop
  66. MySQL Calculate Percentage
  67. Repair all tables in one go
  68. Failed building wheel for mysql-python
  69. ERROR 1115 (42000): Unknown character set: ‘utf8mb4’
  70. mysql: connection refused when trying to connect to localhost using remote IP
  71. Error: Duplicate entry ‘0’ for key ‘PRIMARY’
  72. Why are simple updates to wp_postmeta’s “_edit_lock” so slow?
  73. wpdb->insert multiple record at once
  74. Complex meta query with 3 keys
  75. Search multiple meta keys at once
  76. Configure WordPress to connect to Mysql DB using SSH tunneling
  77. Using $wpdb Class to Pull Recent Comments Across a Network
  78. SQL error #1062 – Duplicate entry ‘1’ for key ‘PRIMARY’ [closed]
  79. Converting MYSQL to WordPress $WPDB
  80. wp query foreach deleting record returning only first or last item
  81. Using $wpdb (WPDB class) ‘replace’ with multiple WHERE criteria problem
  82. WordPress tables and aliases?
  83. What’s the sql for this condition?
  84. Basic wpdb update question
  85. Copy usermeta value where ID matches in the same table
  86. How can I write a formal sql query to get data from a custom table
  87. How to return count of custom post type posts with a specific custom field value via $wpdb?
  88. Help setting up a sql query
  89. Help with Related Posts Function
  90. What is my error trying to create a new table in the database?
  91. How to show result of sql query in a page?
  92. How can I get $wpdb to show MySQL warnings?
  93. Query does not filter duplicate _sku numbers
  94. Ordering topics by most replies in X days using MYSQL statement
  95. wp_postmeta – lot of meta fields
  96. Running WordPress from MySQL Cluster with HAPRoxy
  97. Delete posts with word count less than x number of words
  98. InnoDB: Error: log file ./ib_logfile0 is of different size
  99. Postgres equivalent to MySQL’s \G?
  100. How can I update a value of a field depending on outside source?