Here's the original function:
Code: Select all
function getPerson($ageMin, $ageMax)
{
$sql = sprintf("SELECT uid AS data, " .
"first_name AS label " .
"FROM person WHERE age >= %d AND age <= %d",
$ageMin, $ageMax);
$query = mysql_query($sql);
return $query;
}
Code: Select all
function getPerson($ageMin, $ageMax)
{
global $mysqli;
$statement = $mysqli->prepare("SELECT uid AS data, " .
"first_name AS label " .
"FROM person WHERE age >= ? AND age <= ?");
$statement->bind_param("ii", $ageMin, $ageMax);
$statement->execute();
//return what?
}
-Jesse