警告：mysqli_stmt_bind_param（）期望参数1是mysqli_stmt，给定布尔值？ [重复]

This question already has an answer here:

How to get MySQLi error information in different environments? / mysqli_fetch_assoc() expects parameter 1 to be mysqli_result 1 answer

this is the first time ever that I am trying to secure my code against sql injection using mysqli prepared statement. so please be gentle and explain things in simple terms so I can understand it.

Now I am using the following code which I thought i was right but it throws these errors and I do not understand that at all.

here is the errors:

Warning: mysqli_stmt_bind_param() expects parameter 1 to be mysqli_stmt, boolean given in on line 92

Warning: mysqli_stmt_execute() expects parameter 1 to be mysqli_stmt, boolean given in on line 93

Warning: mysqli_stmt_close() expects parameter 1 to be mysqli_stmt, boolean given in  on line 96

here is the code:

$stmt = mysqli_prepare(
    $db_conx,
    "INSERT $storenameTable (firstname, lastname, username, address_1, address_2, postcode,  country, county, city, email, password, storeShop, signupdate) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)"
);
//after validation, of course
mysqli_stmt_bind_param($stmt, "issi", $firstname, $lastname, $username, $address_1, $address_2, $postcode, $country, $county, $city, $email, $hashedPass, $storenameTable);
mysqli_stmt_execute($stmt);     <//<<<<<<<< line 92
if (mysqli_affected_rows($db_conx))     <//<<<<<<<< line 93
{
    mysqli_stmt_close($stmt);  <//<<<<<<<< line 96
    //update was successful
    $id = mysqli_insert_id($db_conx);
}

i would appreciate your help.

</div>

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

doz22551 2014-04-07 20:16

关注

It seems that you have a missing parameter, you should have 13 parameters and 13 ? check the two parameters after password. (I took out signupdate) try the below :

$stmt = mysqli_prepare(
    $db_conx,
    "INSERT INTO $storenameTable (firstname, lastname, username, address_1, address_2, postcode,  country, county, city, email, password, storeShop) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)"
);
//after validation, of course
mysqli_stmt_bind_param($stmt, "issi", $firstname, $lastname, $username, $address_1, $address_2, $postcode, $country, $county, $city, $email, $hashedPass, $storenameTable);
mysqli_stmt_execute($stmt);     <//<<<<<<<< line 92
if (mysqli_affected_rows($db_conx))     <//<<<<<<<< line 93
{
    mysqli_stmt_close($stmt);  <//<<<<<<<< line 96
    //update was successful
    $id = mysqli_insert_id($db_conx);
}

You also can get more details on the last error by using var_dump(mysqli_error($db_conx));

本回答被题主选为最佳回答 , 对您是否有帮助呢?

查看更多回答(1条)

报告相同问题？

关注问题

“警告：mysqli_stmt_bind_param（）要求参数1为mysqli_stmt，布尔值在” android database php sql
2017-09-08 02:39

回答 1 已采纳 You have check for errors:- <?php //comment these two lines when code started working fine
警告：mysqli_stmt_bind_param（）期望参数1是mysqli_stmt，给定布尔值？ [重复] php
2014-04-07 20:06

回答 2 已采纳 It seems that you have a missing parameter, you should have 13 parameters and 13 ? check the two p
是什么导致了这个错误？ mysqli_stmt :: bind_result（）： mysql php
2018-03-22 17:47

回答 1 已采纳 The question marks in your query are placeholders for values that you'll add later. The number of
mysql bind variable_警告：mysqli_stmt_bind_param：类型定义字符串中的元素数与绑定变量数不匹配[重复](Warning: mysqli_stmt_bind_pa...
2021-02-07 06:08

zhuyurrr的博客警告：mysqli_stmt_bind_param：类型定义字符串中的元素数与绑定变量数不匹配[重复](Warning: mysqli_stmt_bind_param: Number of elements in type definition string doesn't match number of bind variables ...
警告：mysqli_stmt :: bind_param（）变量数与预准备语句中的参数数量不匹配 php
2013-04-06 23:23

回答 1 已采纳 Your query preparation contains zero parameters, since you just dumped the values in there, comple
mysqli_stmt :: bind_param（）：类型定义字符串中的元素数与绑定变量警告数不匹配 php sql
2015-03-29 12:50

回答 1 已采纳 you appear to be mixing PDO syntax with MySQLi syntax. Please read up on http://wiki.hashphp.org
mysqli - mysqli_stmt :: bind_param（）应该是一个参考 php
2012-10-30 08:09

回答 2 已采纳 $param looks like this right before you pass it to call_user_func_array: [['ssi'],'mori','gre','2
Warning: mysqli_stmt::bind_param(): Number of elements in type definition string doesn‘t match numbe
2022-10-28 16:05

石大憨的博客因为在bind_param 函数必须传入参数，来绑定传入的值，可能是大家不熟悉bind_param 函数的用法。这里的字符串字母只能是上面说的四种类型。bind_param('参数的数据类型'，参数变量)，bind_param('sss',lastname,$...
未捕获的错误：调用未定义的方法mysqli_stmt :: get_result（）in php
2019-03-27 03:17

回答 1 已采纳 bind result So if the MySQL Native Driver (mysqlnd) driver is not available, and therefore using
修复mysql错误mysqli_stmt_bind_param（）[重复] mysql php
2016-10-09 05:38

回答 1 已采纳 I think that you might have problem in your connection file mysqli_connect.php Here is my code fo
PHP错误 - >警告：mysqli_stmt :: execute（）：无法获取mysqli_stmt | 警告：mysqli_stmt :: close（） mysql php
2010-03-24 23:05

回答 1 已采纳 I don't think it will work this way. When you close the statement (e.g. $menu_stmt->close();) y
mysql_stmt含义,警告::无效的对象或资源mysqli_stmt。含义和解决方案是什么？
2021-02-07 11:45

weixin_39669202的博客 The following code is throwing the mysterious Warnings. I can't understand what they mean. What do these errors indicate and how to eradicate them?...$q = mysqli_stmt_init($dbconn);$qu...
遇到问题mysqli_stmt（程序风格） mysql php
2016-12-27 17:22

回答 1 已采纳 You're passing a variable in the WHERE clause: WHERE username='$playername' instead of a placeh
运行出错：Warning: mysqli_stmt_bind_param() expects parameter 1 to be mysqli_stmt, boolean given in
2018-12-05 09:40

SKY陈的博客 Warning: mysqli_stmt_bind_param() expects parameter 1 to be mysqli_stmt, boolean given in D:\phpStudy\WWW\FunPic\txet\04\addBook.php on line 19Warning: mysqli_stmt_execute() expects parame...
mysql bind result,警告：mysqli_stmt :: bind_result（）：绑定变量的数量与准备好的语句错误中的字段数量不匹配...
2021-02-07 06:09

weixin_39671964的博客 I had a mysql query and I was converting it to mysqli(prepared statement) but I ran in to a problem which throws the below error,Warning: mysqli_stmt::bind_result(): Number of bind variables doesn't m...
php mysql bind_PHP mysqli_stmt_bind_param() 函数用法及示例
2021-02-02 20:07

SISUERyep的博客 PHP mysqli_stmt_bind_param() 函数用法及示例mysqli_stmt_bind_param()函数将变量作为参数绑定到预处理语句。定义和用法mysqli_stmt_bind_param()函数用于将变量绑定到准备好的语句的参数标记。语法mysqli_stmt_...
mysql bind param_PHP Mysqli_stmt->bind_param报错的原因与解决办法
2021-01-27 12:10

weixin_39842271的博客插件需要用到数据库中的内容，于是我编写查询查询语句，使用了据说较为安全的mysqli::prepare方法。但是有一个报错困扰了我很久。报错内容为“Fatal error: Uncaught Error: Call to a member function ...
php mysql bind_PHP mysqli_stmt_bind_result() 函数用法及示例
2021-03-16 23:30

浊池的博客 PHP mysqli_stmt_bind_result() 函数用法及示例mysqli_stmt_bind_result()函数将变量绑定到预处理语句以存储结果定义和用法mysqli_stmt_bind_result()函数用于将结果集的列绑定到变量。绑定变量后，您需要调用mysqli...
php mysqli_affected_rows,PHP mysqli_stmt_affected_rows() 函数用法及示例
2021-04-23 12:16

海v尔v前v员工的博客 PHP mysqli_stmt_affected_rows() 函数用法及示例mysqli_stmt_affected_rows()函数返回最后执行的语句更改，删除或插入的行总数.定义和用法mysqli_stmt_affected_rows()函数返回最近执行的语句影响(更改，删除，插入...
没有解决我的问题, 去提问

悬赏问题

¥15 关于#网络安全#的问题：求ensp的网络安全，不要步骤要完成版文件
¥15 可否在不同线程中调用封装数据库操作的类
¥20 使用Photon PUN2解决游戏得分同步的问题
¥15 微带串馈天线阵列每个阵元宽度计算
¥15 keil的map文件中Image component sizes各项意思
¥30 BC260Y用MQTT向阿里云发布主题消息一直错误
¥20 求个正点原子stm32f407开发版的贪吃蛇游戏
¥15 划分vlan后，链路不通了？
¥20 求各位懂行的人，注册表能不能看到usb使用得具体信息，干了什么，传输了什么数据
¥15 Vue3 大型图片数据拖动排序

码龄粉丝数原力等级 --

警告：mysqli_stmt_bind_param（）期望参数1是mysqli_stmt，给定布尔值？ [重复]

2条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

警告：mysqli_stmt_bind_param（）期望参数1是mysqli_stmt，给定布尔值？ [重复]

2条回答 默认 最新

悬赏问题

2条回答默认最新