laziness, impatience, and hubris | |
PerlMonks |
comment on |
( [id://3333]=superdoc: print w/replies, xml ) | Need Help?? |
That code can't possibly work! Consider:
$sth is declared, but not initialised. Then if $query is undefined $sth->finish () is called, which must fail with a "Can't call method "finish" on an undefined value at C:\Users\Peter\Delme~~\PerlScratch\noname.pl line 10. " error. Working a little closer to your issue: passing a query as a string in this fashion without passing parameters for the execute () prevent you from using placeholders which probably means your code is susceptible to insertion attacks. Which leads to: the code building the query knows which columns are used for the fetched data and has to deal with the returned rows so the problem isn't with the code you've shown - it's with the calling code. BTW, always use strictures (use strict; use warnings; - see The strictures, according to Seuss). True laziness is hard work In reply to Re: DBI : Get Column name and Value in hash
by GrandFather
|
|