ELI-student001 · ELI-student001 · Sep 11, 2025
diff --git a/server/routes.py b/server/routes.py
@@ -13,7 +13,7 @@
 
     if name:
         cursor.execute(
-            "SELECT * FROM books WHERE name LIKE %s", name
+            "SELECT * FROM books WHERE name LIKE '%" + name + "%'"
@@ -13,7 +13,7 @@
    if name:
        cursor.execute(
-            "SELECT * FROM books WHERE name LIKE '%" + name + "%'"
+            "SELECT * FROM books WHERE name LIKE %s", (f"%{name}%",)
        )
        books = [Book(*row) for row in cursor]
@@ -13,7 +13,7 @@

    if name:
        cursor.execute(
-            "SELECT * FROM books WHERE name LIKE '%" + name + "%'"
+            "SELECT * FROM books WHERE name LIKE %s", (f"%{name}%",)
        )
        books = [Book(*row) for row in cursor]

         )
         books = [Book(*row) for row in cursor]