表格不';不发送值或PHP代码不';t更新
形式表格不';不发送值或PHP代码不';t更新,php,Php,形式 Şuankiİsim:您的SQL查询不正确,请参考以下内容: <?php $con=mysqli_connect("localhost","root","","mmogezgini"); mysqli_query($con,"UPDATE menuler SET isim='$_POST[yeni_menu_isim]' and url='$_POST[yeni_menu_url]' WHERE isim='$_POST[menu_isim]' AND url='$_POST[me
Şuankiİsim:您的SQL查询不正确,请参考以下内容:
<?php
$con=mysqli_connect("localhost","root","","mmogezgini");
mysqli_query($con,"UPDATE menuler SET isim='$_POST[yeni_menu_isim]' and url='$_POST[yeni_menu_url]'
WHERE isim='$_POST[menu_isim]' AND url='$_POST[menu_url]'");
mysqli_close($con);
Header("Location:menuler.php");
?>
MySQLi支持每个查询多个语句。如果您不转义/绑定/准备您的参数,这是SQL注入和删除或更改所有表的简单方法不仅是这种错误的做法语法:“$\u POST[menu\u isim]”
,还可以使用:“…”$_POST['menu_isim']。“…”
@DanFromGermany谢谢你的建议,我现在就搜索逃生功能。谢谢,它很有效,但为什么人们不支持我这不是为了问你不知道的事,回答你知道的事,为了互相帮助?一段时间后,我将无法提问:(
<?php
$con=mysqli_connect("localhost","root","","mmogezgini");
mysqli_query($con,"UPDATE menuler SET isim='$_POST[yeni_menu_isim]' and url='$_POST[yeni_menu_url]'
WHERE isim='$_POST[menu_isim]' AND url='$_POST[menu_url]'");
mysqli_close($con);
Header("Location:menuler.php");
?>
mysqli_query($con,"UPDATE menuler SET isim='". $_POST['yeni_menu_isim']."' ,url='".$_POST['yeni_menu_url'] ."'
WHERE isim='".$_POST['menu_isim']."' AND url='".$_POST['menu_url']."'");