escape($game); $search_escaped = $db->escape($search); if (is_string($search) && strlen($search) >= 3 && strlen($search) < 64) { // Building the query $sql = "SELECT hlstats_PlayerNames.name FROM hlstats_PlayerNames INNER JOIN hlstats_Players ON hlstats_PlayerNames.playerId = hlstats_Players.playerId WHERE game = '{$game_escaped}' AND name LIKE '{$search_escaped}%'"; $result = $db->query($sql); while($row=$db->fetch_row($result)) { print "