我已经写了数据录入我对PHP的 喜欢不确定的指标得到错误的PHP文件我的PHP代码 我想插入其发表不同的输入类型的形式PHP indefined指数误差麻烦
值<?php include("$_SERVER[DOCUMENT_ROOT]/riteshproject/config.php"); ?> <?php include("auth.php"); //include auth.php file on all secure pages ?> <?php $aria=$_POST['area']; $custname=$_POST['custname']; $mob1=$_POST['mob1']; $mob2=$_POST['mob2']; $flatbunglo=$_POST['flatbungalo']; $address=$_POST['address']; $bhk=$_POST['bhk']; $rent=$_POST['rent']; $diposit=$_POST['diposit']; $sqft=$_POST['sqft']; $floor=$_POST['floor']; $lift=$_POST['lift']; echo $addquery="insert into propertymaster (area,custname,mob1,mob2,proptype,address,bhk,rent,diposit,sqft,floor,lift) values ('$aria','$custname','$mob1','$mob2','$flatbunglo','$address','$bhk','$rent','$diposit','$sqft','$floor','$lift')"; mysql_query($addquery); ?> <!DOCTYPE html> <html lang="en"> <head> <title>Shree Shree Property,kolhapur</title> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="stylesheet" href="http://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css"> <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.2/jquery.min.js"></script> <script src="http://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"></script> <style> /* Remove the navbar's default margin-bottom and rounded borders */ .navbar { margin-bottom: 0; border-radius: 0; } /* Set height of the grid so .sidenav can be 100% (adjust as needed) */ .row.content {height: 450px} /* Set gray background color and 100% height */ .sidenav { padding-top: 20px; background-color: #f1f1f1; height: 100%; } /* Set black background color, white text and some padding */ footer { background-color: #555; color: white; padding: 15px; } /* On small screens, set height to 'auto' for sidenav and grid */ @media screen and (max-width: 767px) { .sidenav { height: auto; padding: 15px; } .row.content {height:auto;} .active { background-color: #00bfff; } } </style> </head> <body> <nav class="navbar navbar-inverse"> <div class="container-fluid"> <div class="navbar-header"> <button type="button" class="navbar-toggle" data-toggle="collapse" data-target="#myNavbar"> <span class="icon-bar"></span> <span class="icon-bar"></span> <span class="icon-bar"></span> </button> <a class="navbar-brand" href="#">Logo</a> </div> <div class="collapse navbar-collapse" id="myNavbar"> <ul class="nav navbar-nav"> <li><a href="../home.php" class="active">Home</a></li> <li class="current" id="dddd"><a href="../aboutus.php" >About US</a></li> <li><a href="#">Contact US</a></li> <li><a href="#">Add Property</a></li> <li><a href="#">Luxarious Property</a></li> <li><a href="#">Property For Sale</a></li> <li><a href="#">Other Services</a></li> </ul> <ul class="nav navbar-nav navbar-right"> <li><a href="logout.php"><span class="glyphicon glyphicon-log-in"></span>Logout</a></li> </ul> </div> </div> </nav> <div class="container-fluid text-center"> <div class="row content"> <div class="col-sm-2 sidenav"> <p><a href="#">Link</a></p> <p><a href="#">Link</a></p> <p><a href="#">Link</a></p> </div> <div class="col-sm-8 text-left"> <html> <body> <div id="wrap2"> <form> <h4>Welcome Mr.<?php echo
$ _SESSION ['username']; ?>!
<td align="right"> Area: </td> <td style="text-align:left" width="100px"> <select name="area" id="area" value="select"> <option value="SELECT" style="display:none">SELECT</option> <?php $query="select code,areaname from areamaster"; $query_run=mysql_query($query); mysql_num_rows($query_run); while($row=mysql_fetch_assoc($query_run)) { ?> <option value="<?php echo $row['areaname']?>"><?php echo $row['areaname']?></option> <?php } ?> </select> </td> </tr> <tr class="space1"> <td width='100px' > </td> <td align="right"> Customer Name: </td> <td> <input type="text" id="custname" name="custname" size="40"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Mobile No 1: </td> <td> <input type="text" id="mob1" name="mob1"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Mobile No 2: </td> <td> <input type="text" id="mob2" name="mob2"> </td> </tr> <tr> <td> </td> <td><b>FLAT DETAILS:</b> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Flat/Bungalo: </td> <td> <select name="flatbungalo" id="flatbungalo" value="select"> <option>Flat</option> <option>Bungalo</option> <option>House</option> </select> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Property Address: </td> <td><input type="text" id ="address" name ="address" size="40"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> BHK: </td> <td> <select name="bhk" id="bhk" value="select"> <option>1 BHK</option> <option>2 BHK</option> <option>3 BHK</option> <option>4 BHK</option> </select> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> RENT: </td> <td><input type="text" id ="rent" name ="rent" size="10"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Diposit: </td> <td><input type="text" id ="diposit" name ="diposit" size="10"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> SQ Ft: </td> <td><input type="text" id ="sqft" name ="sqft" size="10"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Floor: </td> <td><input type="text" id ="floor" name ="floor" size="10"> </td> </tr> <tr> <td width='100px' > </td> <td align="right"> Lift: </td> <td> <select name="lift" id="lift" value="select"> <option>Yes</option> <option>No</option> </select> </td> </tr> <tr height="20"> </tr> <tr> <td> </td> <td> </td> <td align="left"><form method="POST"><input type="Submit" name="Add" id="add" value="Add"></form> </td> </tr> </table> </html> </form> </div> </body> </html> </div> <div class="col-sm-2 sidenav"> <div class="well"> <p>ADS</p> </div> <div class="well"> <p>ADS</p> </div> </div> </div> </div> <footer class="container-fluid text-center"> <p>Footer Text</p> </footer> </body> </html> i had echo my query and i got result like insert into propertymaster (area,custname,mob1,mob2,proptype,address,bhk,rent,diposit,sqft,floor,lift) values ('','','','','','','','','','','','') basically blank values are inserting i want to insert values which are posted by different input types from form
的事情正在发生的事情是空值分配给vauables; 例如,我写了$ aria = $ _ POST ['area']; $咏叹调=“空白” 请帮我根据你发布的代码解决这个问题
回答
你有几个问题:
你有两个开标
<html>
标签和两个开标<body>
标签。你有两个开放的提交按钮,这是无效的HTML之前
<form>
标签,可能导致您的提交按钮不属于表格所有的输入,所以当你点击提交按钮,没有您的输入与它一起发送。表单不可嵌套。要修复此错误,请移除第二个开口<form>
标记,使其成为一种形式。之前,您使用由用户如GET和POST变量来任何输入,你应该检查他们的存在,通常与
isset()
功能,如:if (isset($_POST['aria'])) { $aria = $_POST['aria']; }
你应该NEVER将用户输入直接放入SQL语句中。这非常容易受到SQL注入攻击。您应该使用准备好的语句并绑定您的参数。
例如,而不是使用:
$addquery="insert into propertymaster (area,custname) values ('$aria','$custname')";
mysql_query($addquery);
您应该改用:
$stmt = $db->prepare("INSERT INTO propertymaster (area,custname) VALUES (':aria',':custname')";
$stmt->bindParams(':aria', $aria);
$stmt->bindParams(':custname', $custname);
$stmt->execute();
并且该问题已解决..再次提供重大解决方案FROM YOU GUYS保持UP.PROBLEM解决,并且还知道SQL注入攻击 –
很高兴我能帮上忙!如果这是你想要的答案,请接受我的答案。你可以阅读这里:http:// stackoverflow。COM /帮助/人,答案 –
- 1. 指针麻烦
- 2. 麻烦与PHP
- 3. 麻烦PHP
- 4. 麻烦与PHP
- 5. 麻烦在PHP
- 6. 麻烦在PHP
- 7. 麻烦与PHP
- 8. PHP $ _GET麻烦
- 9. PHP麻烦mysql_select
- 10. 麻烦iframe和PHP
- 11. PHP邮件()麻烦
- 12. php阵列麻烦
- 13. 麻烦在C数组指针
- 14. 麻烦
- 15. Underscore.js - 没有和差异方法麻烦
- 16. 我与Highcharts的丝毫不差麻烦
- 17. 麻烦php.-上传文件
- 18. PHP:麻烦preg_match_all()返回
- 19. 麻烦,卷曲和PHP
- 20. PHP - 麻烦与SQL查询
- 21. apache/php的配置麻烦
- 22. PHP邮件()麻烦Mac
- 23. 麻烦追加阵列PHP
- 24. PHP图像上传麻烦
- 25. 麻烦与PHP foreach循环
- 26. XPATH/PHP麻烦与last()
- 27. PHP simplexml_load_string()麻烦双引号
- 28. PHP循环逻辑麻烦
- 29. 麻烦与PHP和XML
- 30. 麻烦定义PHP脚本
使用'每个POST PARAM – RomanPerekhrest
你的HTML代码非常搞砸isset'功能,正在造成这个问题。你嵌入两种形式是没有意义的。您必须移动第二个
我使用isset函数为每个参数错误消失了,但分配给var $ aria的值仍然为空 –