Mysql Msql数据库更新时查询失败
*嗨,我总是得到错误查询失败,但我没有得到apache2日志上的错误 我想在不登录网站的情况下更改帐户密码 希望有人能帮我解决这个问题 //清理POST值Mysql Msql数据库更新时查询失败,mysql,sql,apache,Mysql,Sql,Apache,*嗨,我总是得到错误查询失败,但我没有得到apache2日志上的错误 我想在不登录网站的情况下更改帐户密码 希望有人能帮我解决这个问题 //清理POST值 $login = clean($_POST['login']); $email = clean($_POST['email']); $newpw = clean($_POST['newpass']); $cnewpw = clean($_POST['cnewpass']); //Input Validations if($l
$login = clean($_POST['login']);
$email = clean($_POST['email']);
$newpw = clean($_POST['newpass']);
$cnewpw = clean($_POST['cnewpass']);
//Input Validations
if($login == '') {
$errmsg_arr[] = 'Login ID missing';
$errflag = true;
}
if($email == '') {
$errmsg_arr[] = 'Email missing';
$errflag = true;
}
if($newpw == '') {
$errmsg_arr[] = 'Password missing';
$errflag = true;
}
if($cnewpw == '') {
$errmsg_arr[] = 'Confirm password missing';
$errflag = true;
}
if( strcmp($newpw, $cnewpw) != 0 ) {
$errmsg_arr[] = 'Passwords do not match';
$errflag = true;
}
if($login != '' && $email != '') {
$qry = "SELECT * FROM t_account WHERE name='$login' AND email='$email'";
$result = mysql_query($qry);
if($result) {
if(mysql_num_rows($result) < 1) {
$errmsg_arr[] = 'Username and or Email is not in our system!';
$errflag = true;
}
@mysql_free_result($result);
} else {
die("Query Failed");
}
//Create update query
$qry = "UPDATE t_account SET (pwd, pw2) VALUES('".md5($_POST['newpass'])."','$newpw')";
$result = @mysql_query($qry);
//Check whether the query was successful or not
if($result) {
header("location: register-success.html");
exit();
}else {
die("mysql_error");
}
}
if($login!=''&&$email!=''){
$qry=“从t_帐户中选择*,其中名称='$login'和电子邮件='$email';
$result=mysql\u查询($qry);
如果($结果){
if(mysql_num_rows($result)<1){
$errmsg_arr[]=“用户名和/或电子邮件不在我们的系统中!”;
$errflag=true;
}
@mysql_free_result($result);
}否则{
die(“查询失败”);
}
//创建更新查询
$qry=“更新t_账户集(pwd,pw2)值(“”).md5($_POST['newpass'])。”,“$newpw”)”;
$result=@mysql\u查询($qry);
//检查查询是否成功
如果($结果){
标题(“位置:register success.html”);
退出();
}否则{
死亡(“mysql_错误”);
}
}
*您可以通过phpMyadmin更改密码。检查密码生成器代码。我猜一定是md5。输入if后,尝试打印$qry字符串的值,将其复制粘贴到tour SQL客户端,然后查看得到的结果。更新字符串的SQL语法不正确(至少在ANSI-SQL中) 是的 或
INSERT INTO table (col1,col2) VALUES...
UPDATE table set col1=val1, col2=val2 WHERE...