<?php

$mysqli = new mysqli('127.0.0.1', 'uuu', 'ppp', 'ddd');

$john = 'John';

$stmt = $mysqli->prepare('select \'john\' like ? escape \'\\\\\'');
$stmt->bind_param('s', $john);
$stmt->execute();
var_dump($stmt->get_result()->fetch_row());

$stmt = $mysqli->prepare('select ?');
$stmt->bind_param('s', $john);
$stmt->execute();
var_dump($stmt->get_result()->fetch_row());

$stmt = $mysqli->prepare('select \'john\' like (select ?) escape \'\\\\\'');
$stmt->bind_param('s', $john);
$stmt->execute();
var_dump($stmt->get_result()->fetch_row());