function db_query

7.x db_query($query, array $args = array(), array $options = array())
6.x db_query($query)
6.x db_query($query)

Runs a basic query in the active database.

User-supplied arguments to the query should be passed in as separate parameters so that they can be properly escaped to avoid SQL injection attacks.


$query: A string containing an SQL query.

...: A variable number of arguments which are substituted into the query using printf() syntax. Instead of a variable number of query arguments, you may also pass a single array containing the query arguments.

Valid %-modifiers are: %s, %d, %f, %b (binary data, do not enclose in '') and %%.

NOTE: using this syntax will cast NULL and FALSE values to decimal 0, and TRUE values to decimal 1.

Return value

A database query result resource, or FALSE if the query was not executed correctly.

Related topics

417 calls to db_query()
actions_delete in drupal-6.x/includes/
Delete a single action from the database.
actions_do in drupal-6.x/includes/
Perform a given list of actions by executing their callback functions.
actions_function_lookup in drupal-6.x/includes/
Given an md5 hash of a function name, return the function name.
actions_get_all_actions in drupal-6.x/includes/
Retrieves all action instances from the database.
actions_load in drupal-6.x/includes/
Retrieve a single action from the database.

... See full list

1 string reference to 'db_query'
drupal_error_handler in drupal-6.x/includes/
Log errors as defined by administrator.


drupal-6.x/includes/, line 115
Database interface code for PostgreSQL database servers.


function db_query($query) {
  $args = func_get_args();
  $query = db_prefix_tables($query);
  if (isset($args[0]) and is_array($args[0])) { // 'All arguments in one array' syntax
    $args = $args[0];
  _db_query_callback($args, TRUE);
  $query = preg_replace_callback(DB_QUERY_REGEXP, '_db_query_callback', $query);
  return _db_query($query);