drzil26260 2014-10-05 11:33
浏览 84
已采纳

PHP将数据从表单输入到SQL数据库中

Hello I wish to input some data from a HTML form in my website into a SQL database. Here is my database so far.

  • 写回答

1条回答 默认 最新

  • duan3601 2014-10-05 11:51
    关注

    You could easily just call the addNewUser() function passing the required parameters as:

    addNewUser($connect,$username,$password,$dbtable);
    

    A better usage example would be to first check that the form has been already submitted to prevent any direct access or empty records and PHP warnings by checking that form fields have been submitted, ie.

    if(isset($_POST["username"]) && isset($_POST["password"]))
    {
        $username=$_POST['username'];
        $password=$_POST["password"];
    
        addNewUser($connect,$username,$password,$dbtable);
     }
    

    Other than that this seems to be a very basic example and also a bad practise on how to implement a new insert in the database so be sure not to use any of this in a production environment. IE:

    • No input filtering.
    • Trying to "imitate" an Auto Increment field for the user
    • Vulnerable to SQL injection and even prone to fail by accident if say a user tries to register with a username or password that contains a quote
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 宇视监控服务器无法登录
  • ¥15 PADS Logic 原理图
  • ¥15 PADS Logic 图标
  • ¥15 电脑和power bi环境都是英文如何将日期层次结构转换成英文
  • ¥15 DruidDataSource一直closing
  • ¥20 气象站点数据求取中~
  • ¥15 如何获取APP内弹出的网址链接
  • ¥15 wifi 图标不见了 不知道怎么办 上不了网 变成小地球了
  • ¥50 STM32单片机传感器读取错误
  • ¥50 power BI 从Mysql服务器导入数据,但连接进去后显示表无数据