Warning: file_get_contents(/data/phpspider/zhask/data//catemap/1/php/228.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181

Warning: file_get_contents(/data/phpspider/zhask/data//catemap/0/email/3.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Php can';t型';将其插入mysql数据库的符号_Php_Mysql - Fatal编程技术网
Fatal编程技术网
  • php/
  • Php can';t型';将其插入mysql数据库的符号

Php can';t型';将其插入mysql数据库的符号

php mysql

Php can';t型';将其插入mysql数据库的符号,php,mysql,Php,Mysql,hii有php代码可以将带有图像的文本插入到我的sql数据库中,所以问题是当我插入带有“symbol”的文本时,它不会插入,而当我插入不带“symbol”的文本时,它工作正常 这是我的代码如何解决问题 <?php session_start(); if ((isset($_SESSION['admin']))) { require_once("../dbconfig.php"); ?> <form method="post" name="data_table" enct

hii有php代码可以将带有图像的文本插入到我的sql数据库中,所以问题是当我插入带有“symbol”的文本时,它不会插入,而当我插入不带“symbol”的文本时,它工作正常 这是我的代码如何解决问题

<?php
session_start();
if ((isset($_SESSION['admin'])))
 {
 require_once("../dbconfig.php");

?>

<form method="post" name="data_table" enctype="multipart/form-data">

<?php
error_reporting(0);
if(isset($_POST['add2'])){
include_once '../dbconfig.php';
$username=$_SESSION["admin"];
$subject=$_POST['subject'];
$description=$_POST['description'];
$image = rand(1000,100000)."-".$_FILES['image']['name'];
if(!isset($image))
   echo"Please Upload Image"; 
else{ 
$file_loc = $_FILES['image']['tmp_name'];
$file_size = $_FILES['image']['size'];
$file_type = $_FILES['image']['type'];
$folder="uploads-about/";
$new_size = $file_size/1024;  
$new_file_name = strtolower($image);
$final_image=str_replace(' ','-',$new_file_name);
if(move_uploaded_file($file_loc,$folder.$final_image))
    {
$sql="INSERT INTO about (subject,description,image) 
VALUES ('$subject','$description','$final_image')"; 
$result=mysql_query($sql);
   if($result)
   {
echo "<font size='5px'><div align='center'>Successful</div></font>";
}else
{
echo "<font size='5px'><div align='center'>errror</div></font>";

}      }
else{
echo "<font size='5px'><div align='center'>Select image to upload</div></font>";
}
}
 mysql_close();
}
  ?>
<div align="center">
<br>
        <label for="Username">Subject: </label>&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp
        <input type="text" name="subject" id="Username" style="width:500px;height:40px" />
        <br><br>
        <label for="Password">Description: </label>&nbsp&nbsp
        <textarea name="description" id="Password" style="width:500px;height:100px" ></textarea>
        <br><br>

        <label for="image">Select Image</label>
        <input type="file" class="button purple image" name="image" accept="image/*" id="username" capture  />
        <br><br><br>
        <button name="add2" value="log in" class="button purple add"><span>ADD</span></button>
        </div> 
  </form>
<?php } ?>


将有所帮助,但您应使用以下方法清理数据:

。这会有帮助的

此外,它将为您处理此问题,使所有内容更安全,代码更可读:)


编辑:不想吸血,正如@TimBiegeleisen在评论中所述…
解决问题的快速方法是在字符串中转义单引号,例如
“”
。但是您应该真正使用预先准备好的语句,它会自动为您处理这个(以及许多其他陷阱)。