Javascript Can';t从窗体保存数据库中的其他数据
我试图找到这个问题的答案,但什么也做不到。我制作了一个表单,可以接受产品名称、价格、类别、子类别、详细信息和图像等数据。此数据将保存在数据库中。当我以无错误的方式保存时,我会检查我的数据库是否已保存,但价格和详细信息没有保存。我该怎么办?请帮帮我 下面是PHP的代码Javascript Can';t从窗体保存数据库中的其他数据,javascript,php,html,Javascript,Php,Html,我试图找到这个问题的答案,但什么也做不到。我制作了一个表单,可以接受产品名称、价格、类别、子类别、详细信息和图像等数据。此数据将保存在数据库中。当我以无错误的方式保存时,我会检查我的数据库是否已保存,但价格和详细信息没有保存。我该怎么办?请帮帮我 下面是PHP的代码 <?php session_start(); if(!isset($_SESSION["manager"])){ header("location:../storeadmin/admin_login.php"
<?php
session_start();
if(!isset($_SESSION["manager"])){
header("location:../storeadmin/admin_login.php");
exit();
}
$managerID = preg_replace('#[^0-9]#i',"",$_SESSION["id"]);
$manager = preg_replace('#[^A-Za-z0-9]#i',"",$_SESSION["manager"]);
$password = preg_replace('#[^A-Za-z0-9]#i',"",$_SESSION["password"]);
include "../storeconnections/connect_to_mysql.php";
$sql = mysql_query("SELECT * FROM admin WHERE id='$managerID' AND username='$manager' AND password='$password' LIMIT 1");
$existCount = mysql_num_rows($sql);
if($existCount == 0){
echo 'Your login session data is not on record in the database.';
exit();
}
?>
<?php
//Script Error Reporting
error_reporting(E_ALL);
ini_set('display_errors','1')
?>
<?php
//Delete Item Question to Admin and delete product if they choose
if(isset($_GET['deleteid'])){
echo'Do you really want to delete product '.$_GET['deleteid'].'?<a href="inventory_list.php?yesdelete='.$_GET['deleteid'].'">Yes</a> | <a href="inventory_list.php">No</a>';
exit();
}
if(isset($_GET['yesdelete'])){
//remove item from system and delete its pic
//delete from database
$id_to_delete = $_GET['yesdelete'];
$sql = mysql_query("DELETE FROM products WHERE id='$id_to_delete' LIMIT 1") or die(mysql_error());
//unlink from server
//remove picture
$pictodelete = ("../inventory_images/$id_to_delete.png");
if(file_exists($pictodelete)){
unlink($pictodelete);
}
header("location:inventory_list.php");
exit();
}
?>
<?php
//Parse the form data and add inventory item to the system
if(isset($_POST['product_name'])){
$product_name = mysql_real_escape_string($_POST['product_name']);
$price = mysql_real_escape_string($_POST['price']);
$category = mysql_real_escape_string($_POST['category']);
$subcategory = mysql_real_escape_string($_POST['subcategory']);
$details = mysql_real_escape_string($_POST['details']);
$sql = mysql_query("SELECT id FROM products WHERE product_name='$product_name' LIMIT 1");
$productMatch = mysql_num_rows($sql);
if($productMatch > 0){
echo 'Sorry you tried to place a duplicate "Product Name" into the system, <a href="inventory_list.php">Click here.</a>';
exit();
}
$sql = mysql_query("INSERT INTO products(product_name, price, details, category, subcategory, date_added)
VALUES('$product_name','$price','$details','$category','$subcategory',now())") or die(mysql_error());
$pid = mysql_insert_id();
$newname = "$pid.png";
move_uploaded_file($_FILES['fileField']['tmp_name'],"../inventory_images/$newname");
header("location:inventory_list.php");
exit();
}
?>
<?php
//This block grabs the whole list for viewing
$product_list = "";
$sql = mysql_query("SELECT * FROM products ORDER BY date_added DESC");
$productCount = mysql_num_rows($sql);
if($productCount > 0){
while($row = mysql_fetch_array($sql)){
$id = $row['id'];
$product_name = $row['product_name'];
$price = $row['price'];
$date_added = strftime("%b %d, %Y", strtotime($row['date_added']));
$product_list .= "#$id | <strong> $product_name</strong> | Php.$price | <em>Added : $date_added</em> <a href='inventory_edit.php?pid=$id'>edit</a>• <a href='inventory_list.php?deleteid=$id'>delete</a> <br>";
}
}else{
$product_list = "You have no product listed in your store yet";
}
?>
您将输入字段命名为textarea
和textfield
:
<input name="textfield" type="text" id="textfield" size="12"/>
<textarea name="textarea" id="textarea" cols="64" rows="5"></textarea>
确保输入字段的名称是描述性的和准确的,并确保它们在客户端和服务器上是一致的
此外,不要对输入字段使用保留元素名称。在本例中,按钮
是现有保留html元素的名称<代码>提交
也不能用作元素的名称
<input type="submit" name="button" id="button" value="Add Item"/>
这个密码会让我哭的。在做任何其他事情之前,请立即停止使用mysql.*
函数。使用带有命名参数的PDO,或使用mysqli准备的语句。然后,返回一个简短的、自包含的、正确的示例(),您能指定我应该放什么代码吗?顺便说一句,谢谢你的回复。我的回答应该足够了。
<input name="textfield" type="text" id="textfield" size="12"/>
<textarea name="textarea" id="textarea" cols="64" rows="5"></textarea>
$price = mysql_real_escape_string($_POST['price']);
$details = mysql_real_escape_string($_POST['details']);
<input type="submit" name="button" id="button" value="Add Item"/>