Fatal编程技术网
  • php/
  • 用PHP更新数据库

用PHP更新数据库

php mysql

用PHP更新数据库,php,mysql,sql-update,Php,Mysql,Sql Update,缺少一个引号:village=$village'必须是village='$village' 此外,您还应该使用准备好的语句来防止sql注入,这样可以使查询更具可读性。请更新您的代码 其中id=“$id.”“您不需要更新查询中的值(“$name”、“$fathers\u name”、“$gotra”、“$image”、“$village”、“$company\u name”、“$address1”、“$address2”、“$city”、“$pincode>”中缺少村=$village' 改变 &

缺少一个引号:
village=$village'
必须是
village='$village'

此外,您还应该使用准备好的语句来防止sql注入,这样可以使查询更具可读性。

请更新您的代码

其中id=“$id.”“

您不需要更新查询中的
值(“$name”、“$fathers\u name”、“$gotra”、“$image”、“$village”、“$company\u name”、“$address1”、“$address2”、“$city”、“$pincode>”
中缺少
村=$village'

改变


<?php
$servername = "localhost";
$username = "root";
$password = "";
$dbname = "dhandhar";
$conn = new mysqli($servername, $username, $password, $dbname);

?>
<?php
$id=$_GET['id'];

$name=$_POST['name']; 
$fathers_name=$_POST['fathers_name'];
$gotra=$_POST['gotra'];
$image=$_POST['image'];
$village=$_POST['village'];
$company_name=$_POST['company_name'];
$address1=$_POST['address1'];
$address2=$_POST['address2'];
$city=$_POST['city'];
$pincode=$_POST['pincode'];
$mobile1=$_POST['mobile1'];
$mobile2=$_POST['mobile2'];
$village_number=$_POST['village_number'];

if($_POST['edit2'])
{
$sql = "UPDATE members_data SET name='$name', fathers_name='$fathers_name', gotra='$gotra', image='$image', village=$village', company_name='$company_name', address1='$address1', address2='$address2', city='$city', pincode='$pincode', mobile1='$mobile1', mobile2='$mobile2', village_number='$village_number' )VALUES('$name', '$fathers_name', '$gotra', '$image', '$village', '$company_name', '$address1', '$address2', '$city', '$pincode', '$mobile1', '$mobile2', '$village_number' WHERE id= '".$id."'";
if (mysqli_query($conn, $sql)) {
echo "New record created successfully";
} else {
echo "Error: " . $sql . "<br>" . mysqli_error($conn);
}


$sql = "DELETE FROM edit_members_data WHERE id= '".$id."'";

if ($conn->query($sql) === TRUE) {
echo "Record deleted successfully";
} else {
echo "Error deleting record: " . $conn->error;
$conn->close();
}
}
?>
<script type="text/javascript">window.location="admin_approve.php"</script>


进入


你应该仔细阅读sql注入。谢谢兄弟,这是一个愚蠢的错误。再次感谢Hanks Hassan。我知道它的价值,但缺少的报价是痛苦的。

$sql = "UPDATE members_data SET name='$name', fathers_name='$fathers_name', gotra='$gotra', image='$image', village=$village', company_name='$company_name', address1='$address1', address2='$address2', city='$city', pincode='$pincode', mobile1='$mobile1', mobile2='$mobile2', village_number='$village_number' )VALUES('$name', '$fathers_name', '$gotra', '$image', '$village', '$company_name', '$address1', '$address2', '$city', '$pincode', '$mobile1', '$mobile2', '$village_number' WHERE id= '".$id."'";



$sql = "UPDATE members_data SET name='$name', fathers_name='$fathers_name', gotra='$gotra', image='$image', village='$village', company_name='$company_name', address1='$address1', address2='$address2', city='$city', pincode='$pincode', mobile1='$mobile1', mobile2='$mobile2', village_number='$village_number' ) WHERE id= '$id' ";