Php sql,使用不同的按钮影响不同的行
我有一个项目看起来像这样。 我想看这张照片,然后想写一些关于这张照片的东西。“gönder”按钮应该会影响右上方的图片。我想把它们添加到我的sql表中的docYorum中(我把它放在下面),然后如果我写了关于这张图片的东西,我想删除它们 我的sql表: 我的代码: rontgenDoc.phpPhp sql,使用不同的按钮影响不同的行,php,sql,phpmyadmin,Php,Sql,Phpmyadmin,我有一个项目看起来像这样。 我想看这张照片,然后想写一些关于这张照片的东西。“gönder”按钮应该会影响右上方的图片。我想把它们添加到我的sql表中的docYorum中(我把它放在下面),然后如果我写了关于这张图片的东西,我想删除它们 我的sql表: 我的代码: rontgenDoc.php <?php define('TITLE', 'Requests'); define('PAGE', 'rontgenDoc'); include('includes/header.php');
<?php
define('TITLE', 'Requests');
define('PAGE', 'rontgenDoc');
include('includes/header.php');
include('../dbConnection.php');
session_start();
if(isset($_SESSION['is_adminlogin'])){
$aEmail = $_SESSION['aEmail'];
} else {
echo "<script> location.href='login.php'; </script>";
}
?>
<div class="col-sm-4 mb-5">
<!-- Main Content area start Middle -->
<?php
$sql = "SELECT file_name, hastaAdi, request, requestDetail FROM images";
$result = $conn->query($sql);
if($result->num_rows > 0){
while($row = $result->fetch_assoc()){
echo '<div class="card mt-5 mx-5">';
echo '<div class="card-header">';
echo 'Hasta Adı : '. $row['hastaAdi'];
echo '</div>';
echo '<div class="card-body">';
echo '<h5 class="card-title">Request Info : ' . $row['request'] . '</h5>';
echo '<p class="card-text">Açıklama: ' . $row['requestDetail'] . '</p>';
echo '<p class="card-text">Röntgen Görseli: <img id="myImg" width="100" height="100" src="../patient/uploads/' . $row['file_name'] . '"></p>';
echo '<div class="float-right">';
echo '<form action="" method="POST"> <input type="hidden" name="id" value='. $row["hastaAdi"] .'><input type="submit" class="btn btn-info mr-3" name="view" value="View"><input type="submit" class="btn btn-secondary" name="close" value="Close"></form>';
echo '</div>' ;
echo '</div>' ;
echo'</div>';
$num = 12;
echo '
<form action="docYorum.php" method="post" enctype="multipart/form-data">
<div class="col-sm-9 col-md-12 mt-5">
<form class="mx-10" action="" method="POST">
<div class="form-group">
<label for="docYorum">Doktor Değerlendirmesi</label>
<input type="text" class="form-control" id="docYorum" placeholder="Doctor Yorumu" name="docYorum" value="'.$row['id'].'">
</div>
<button type="submit" class="btn btn-info" name="submit">Gönder</button>
</form>
';
}
} else {
echo '<div class="alert alert-info mt-5 col-sm-6" role="alert">
<h4 class="alert-heading">Well done!</h4>
<p>Aww yeah, you successfully assigned all Requests.</p>
<hr>
<h5 class="mb-0">No Pending Requests</h5>
</div>';
}
?>
<?php
include('includes/footer.php');
$conn->close();
?>
<?php
// Include the database configuration file
include('dbConnection.php');
session_start();
$r=session_id();
$statusMsg = '';
$sql = "SELECT file_name FROM images";
$result = $conn->query($sql);
$docYorum = $_REQUEST['docYorum'];
if($result->num_rows > 0){
while($row = $result->fetch_assoc()){
if(isset($_POST["submit"]) ){
$fileName=$row["file_name"];
$insert = $conn->query("UPDATE images SET docYorum='$docYorum' WHERE id='..'");
}
}
}
// Display status message
echo $statusMsg;
?>
<script>console.log(<?php echo $sql?>)</script>
rontgenDoc.php中的这个表单应该是
<form action="docYorum.php" method="post" enctype="multipart/form-data">
<div class="col-sm-9 col-md-12 mt-5">
<div class="form-group">
<label for="docYorum">Doktor Değerlendirmesi</label>
<input type="text" name="id" hidden value="'.$row['id'].'">
<input type="text" class="form-control" id="docYorum" placeholder="Doctor Yorumu" name="docYorum" value="">
</div>
<button type="submit" class="btn btn-info" name="submit">Gönder</button>
</div>
</form>
<?php
// Include the database configuration file
include('dbConnection.php');
session_start();
$r=session_id();
$statusMsg = '';
if(isset($_POST["submit"]) ){
$id = mysqli_real_escape_string($conn,$_POST['id']);
$docYorum = mysqli_real_escape_string($conn,$_POST['docYorum']);
$fileName=$row["file_name"];
$insert = $conn->query("UPDATE images SET docYorum='$docYorum' WHERE id='$id';");
}
?>
德尔伦迪尔梅西医生
哥德尔
php应该是
<form action="docYorum.php" method="post" enctype="multipart/form-data">
<div class="col-sm-9 col-md-12 mt-5">
<div class="form-group">
<label for="docYorum">Doktor Değerlendirmesi</label>
<input type="text" name="id" hidden value="'.$row['id'].'">
<input type="text" class="form-control" id="docYorum" placeholder="Doctor Yorumu" name="docYorum" value="">
</div>
<button type="submit" class="btn btn-info" name="submit">Gönder</button>
</div>
</form>
<?php
// Include the database configuration file
include('dbConnection.php');
session_start();
$r=session_id();
$statusMsg = '';
if(isset($_POST["submit"]) ){
$id = mysqli_real_escape_string($conn,$_POST['id']);
$docYorum = mysqli_real_escape_string($conn,$_POST['docYorum']);
$fileName=$row["file_name"];
$insert = $conn->query("UPDATE images SET docYorum='$docYorum' WHERE id='$id';");
}
?>
你能提供你的代码片段吗?@HanisHapsa抱歉,我放弃添加最重要的部分。addedKeep请记住输入不是转义的($docYorum
),这意味着您的代码容易受到sql注入的攻击!这将添加到图像表中。对于删除,您尚未为其创建接口。这是一个管理页面吗?是的,它的管理面板在这一点上,如果在DocyRom输入字段为空时按submit按钮,它将自动清空数据库中的该列。如果您想要另一个实现,请指定。非常感谢。我想删除它。如果我不显示,它就看不见了,对吧?差不多是的。