存储在数据库中的所有其他信息都在网站上,而不是作为BLOB图像的图像。数据库保存图像,就像按下它一样会显示正在存储的图像。任何赞赏!未从数据库中收集图像
GetImage.php
<?php
include "connection.php";
$ID = $_GET["ID"];
$SQLCommand = "SELECT * FROM products WHERE ID = '$ID'";
$Result = mysqli_query($con, $SQLCommand);
$row = mysqli_fetch_assoc($Result);
header("Content-type:" . $row["Name"]);
echo $row["Image"];
?>
shop.php
<?php
include "connection.php";
$SQLCommand = "SELECT * FROM products";
$Result = mysqli_query($con, $SQLCommand);
while($row = mysqli_fetch_assoc($Result)){
echo "<p id='p1'>" . $row["Name"] .
"<br></p><p id='p3'>£" . $row["Price"] .
"<br><br><img src=GetImage.php?ID=" . $row["ID"] . " width=10%>" .
"<br><a href=productdetails.php?ID=" . $row["ID"] . ">Details</a></p>".
"<p id='p2'><a href=BasketAdd.php?ID=" . $row["ID"] . ">Add to Basket</a><br><br>";
}
?>
InsertImageform
<html>
<body>
<form action="UploadFile.php" method="post"
ENCTYPE = “多部分/格式数据”>
Name: <input type="text" name="name" id="name"><p>
Description: <input type="text" name="description" id="description"><p>
Price: <input type="text" name="price" id="price"><p>
Protein: <input type="text" name="protein" id="protein"><p>
Type: <input type="text" name="type" id="type"><p>
Filename: <input type="file" name="file" id="file"><br>
<input type="submit" name="submit" value="Submit">
</form>
</body>
</html>
** WARNING **:当使用'mysqli',你应该使用[参数查询](http://php.net/manual/en/mysqli.quickstart.prepared-statements.php)和['bind_param'](http://php.net/manual/en/mysqli-stmt.bind- param.php)将用户数据添加到您的查询中。 **不要**使用字符串插值或连接来完成此操作,因为您创建了严重的[SQL注入漏洞](http://bobby-tables.com/)。 **绝不**将'$ _POST'或'$ _GET'数据直接放入查询中,如果有人试图利用您的错误,这会非常有害。 – tadman