Php Mysql插入查询问题
我对此查询有问题,由于某种原因,它没有插入。有什么问题吗Php Mysql插入查询问题,php,html,mysql,Php,Html,Mysql,我对此查询有问题,由于某种原因,它没有插入。有什么问题吗 <?php if ( isset( $_POST['submit'] ) ) { $email = $_POST['email']; $name = $_POST['name']; $comment = $_POST['comment']; if($email && $name ) { i
<?php
if ( isset( $_POST['submit'] ) ) {
$email = $_POST['email'];
$name = $_POST['name'];
$comment = $_POST['comment'];
if($email && $name ) {
if($comment) {
$connect = mysql_connect("dragon.kent.ac.uk", "repo", "3tpyril");
mysql_select_db("repo");
$query = mysql_query("INSERT into comments(comment, name,email, newsitemId) VALUES ('$email', '$name','$comment',':newsitemId'=> $_POST[newsitemId])");
echo '<script type="text/javascript">alert("Your blog post has been added");</script>';
} else {
echo '<script type="text/javascript">alert("Please provide some details");</script>';
}
} else {
echo '<script type="text/javascript">alert("All fields required");</script>';
}
}
?>
是。你们试图使用一些类似于事先准备好的陈述,但完全错误的方式。这应该可以解决这个问题:
$query = mysql_query("INSERT into comments(comment, name,email, newsitemId) VALUES ('$email', '$name','$comment','" . mysql_real_escape_string($_POST['newsitemId']) . "')");
$query = 'INSERT INTO table (column) VALUES (:myValue);';
$binds = array(
'myValue' => $_POST['myValue']
);
$db->Execute($query, $binds);
"INSERT into comments(comment, name,email, newsitemId) VALUES ('$email', '$name','$comment','{$_POST['newsitemId']}')"
$query = mysqli_query("INSERT into comments VALUES ('$email', '$name','$comment', '$_POST[newsitemId]')");
您也可以尝试使用这个有效的insert语句,但稍后在现实世界中实现代码时,出于安全原因,必须对其进行编辑
$con=mysqli_connect("hostname","username","password","databasename");
if (mysqli_connect_errno())
{
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
else
{
mysqli_query($con,"INSERT INTO comments VALUES ('$email', '$name','$comment', '$_POST[newsitemId]' );
mysqli_close($con);
}
':newsitemId'=>$\u POST[newsitemId]'newsitemId'=$\u POST[newsitemId]':newsitemId'=>$\u POST[newsitemId])mysql\u error()