Warning: file_get_contents(/data/phpspider/zhask/data//catemap/8/mysql/71.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
PHP&;MySQL:将表中的一行设置为由$u POST[';username';]指定的变量_Php_Mysql - Fatal编程技术网
Fatal编程技术网
  • php/
  • PHP&;MySQL:将表中的一行设置为由$u POST[';username';]指定的变量

PHP&;MySQL:将表中的一行设置为由$u POST[';username';]指定的变量

php mysql

PHP&;MySQL:将表中的一行设置为由$u POST[';username';]指定的变量,php,mysql,Php,Mysql,确保转义任何变量。否则php会将其解析为字符串:) 试试这个,以后再阅读手册,它非常有用:) mysqli_fetch将被弃用。 这是手册 首次获取值/记录时。修改它,然后重新输入。您必须注意并发/竞争条件。 <?php //The victim's name, taken from a textfield $victim = $_POST['username']; //The ammount to be withdrawn from the user $ammount = 2000;

确保转义任何变量。否则php会将其解析为字符串:)

试试这个,以后再阅读手册,它非常有用:)

mysqli_fetch将被弃用。 这是手册

首次获取值/记录时。修改它,然后重新输入。您必须注意并发/竞争条件。 
<?php
//The victim's name, taken from a textfield
$victim = $_POST['username'];
//The ammount to be withdrawn from the user
$ammount = 2000;

if (isset($_POST['submit'])) {

mysql_query("UPDATE users SET money = money-$ammount WHERE username = '$victim'");
echo "You stole $ammount from $victim";
} else {
echo "Write the username of the person you're trying to steal money from..";
}

?>

$victimsMoney = mysql_query("SELECT money FROM users WHERE username = '$victim'");

$victimsMoney = mysql_query("SELECT money FROM users WHERE username = '".$victim."'");
while($fetch = mysqli_fetch_assoc($victimsMoney)){
                echo $fetch['money'];
}