coopster - 8:52 pm on Jan 20, 2013 (gmt 0)

>> multiple filters

You can filter as you demonstrated, in your WHERE clause of your query. However, AND THIS IS A BIG WARNING, never trust user-supplied input, including raw $_POST superglobals. You really should be checking your data for valid type and expected values and after that you should be using the "real_escape" features provided by your database API. More information can be found in the online PHP manual for Security as well as the MySQLi functions.