cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Exit
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
  • 한국 커뮤니티
0
Upvote

Referencing url variable in cfquery that contains # sign

thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010

I am using CF 9 and cannot figure out how to reference a url variable in my cfquery that contains a "#" character as part of the string name (i.e. http://somepage.cfm?variable_name=tom#h.

When I try to execute the query, it is only pulling "tom" due to the # sign.  I tried to double up the # sign (##) but that didn't work either.

<cfquery NAME="qryGraph"
DATASOURCE="DB2"
USERNAME=#request.username#
PASSWORD=#request.password#>

SELECT DATE

FROM TABLE
WHERE NAME = '#variable_name#'  

</cfquery>

Any help would be appreciated!

Tom

2.4K
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines

correct answers 1 Correct answer

ilssac
Valorous Hero , Apr 08, 2010 Apr 08, 2010

http://somepage.cfm?variable_name=tom%23h.

And it should work with no other modifications.

If you are building this code in your CFML you can use the urlEncodedFormat() function.

Translate
replies 13 Replies 13
latest latest Jump to latest reply
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010

Where did you try to double up the pound sign?

You may need to use string replacment on your variable to double the pound sign inside the <cfquery...> block.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010
In Response To ilssac

I doubled up the pound sign within the url. (i.e. http://somepage.cfm?variable_name=tom##h).  It still only recognized "tom".

Tom

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010
In Response To thuelhorst

Have you tried something like:

WHERE Name = '#replace(variable_name,"##","####","ALL")#'

My feeling is that this rather awkword.... but I'm not sure why your code is not working as it is.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010
In Response To ilssac

No luck with the replace function:

url:

http://127.0.0.1:8500/test/test.cfm?plan_name=AP##BATCH

<cfquery NAME="qryGraph1"

DATASOURCE="DB2P"

USERNAME=#request.username#

PASSWORD=#request.password#>

SELECT CLASS1_CPU_TOTAL

FROM DB2PDBA.DBT_DB2PM_REPORTING

WHERE CORRNAME = 'APK085'

AND PLAN_NAME = '#replace(plan_name,"##","####","ALL")#'

AND DATE = '2010-03-30'

</cfquery>

<cfquery NAME="qryGraph2"

DATASOURCE="DB2P"

USERNAME=#request.username#

PASSWORD=#request.password#>

SELECT CLASS1_CPU_TOTAL

FROM DB2PDBA.DBT_DB2PM_REPORTING

WHERE CORRNAME = 'APK085'

AND PLAN_NAME = 'AP##BATCH'

AND DATE = '2010-03-30'

</cfquery>

qryGraph1 did not return any data.

qryGraph2 returned the expected sum when I hard coded the value with two pound signs.

Message was edited by: thuelhorst

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010
In Response To thuelhorst

You would not use both a double # in the URL and the replace function.  If you did you would end up with four #### in your stirng.

Speaking of which are you capturing the SQL statement that is being generated?

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010
In Response To ilssac

I have tried various combinations but SQL capture always truncates after the pound sign:

SELECT CLASS1_CPU_TOTAL
FROM DB2PDBA.DBT_DB2PM_REPORTING
WHERE CORRNAME = 'APK085'
AND PLAN_NAME = 'AP'
AND DATE = '2010-03-30'

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010
In Response To thuelhorst

Have you confirmed that it is getting to the server with the fill string?

<cfoutput>#url.variable_name#</cfoutput>

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010
In Response To ilssac

Regardless of whether I the variable name has one or two pound signs, the value gets truncated off after the #.

value for url.variable_name: "AP#BATCH"

<cfouptput #url.variable_name#> results in "AP"

value for url.variable_name: "AP##BATCH"

<cfouptput #url.variable_name#> results in "AP"

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010
In Response To thuelhorst

Oh the HELL D'OH.

It is the browser.  A hash mark in a browser is an Anchor!

You need to be escaping the hash mark in the url.

IIRC that would be %23

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010
In Response To ilssac

How do I make the necessary correction in my code?

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010
In Response To thuelhorst

http://somepage.cfm?variable_name=tom%23h.

And it should work with no other modifications.

If you are building this code in your CFML you can use the urlEncodedFormat() function.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
thuelhorst
New Here ,
Apr 08, 2010 Apr 08, 2010
LATEST
In Response To ilssac

Thanks Ian!!!

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
ilssac
Valorous Hero ,
Apr 08, 2010 Apr 08, 2010

P.S.

I hope you are planning to use serious SQL injection protections from code like this that uses input from a user via the URL query string.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Documentation
ColdFusion User Guide
Open in a new window
Copyright © 2025 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices