PHP警告：mysqli_stmt :: bind_param（）：类型定义字符串中的元素数与数字不匹配

I am familiar with this error but it looks like i am blind or something . followings are php codes:

DB_functions.php

    <?php

class DB_Functions {

    private $conn;

    // constructor
    function __construct() {
        require_once 'DB_Connect.php';
        // connecting to database
        $db = new Db_Connect();
        $this->conn = $db->connect();
    }

    // destructor
    function __destruct() {

    }

/*update user data*/




public function updateUser($name, $email, $oldpassword, $newpassword) 
{
        $uuid = uniqid('', true);
        $hash = $this->hashSSHA($newpassword);
        $encrypted_password = $hash["encrypted"]; // encrypted password
        $salt = $hash["salt"]; // salt

        $stmt = $this->conn->prepare("update users set name ='$name', email ='$email', encrypted_password = '$encrypted_password' , updated_at = NOW() where email ='$email' ");
        $stmt->bind_param("sssss",  $name, $email, $encrypted_password , $updated_at);
        $stmt->execute();
        $stmt ->bind_result($row_name, $row_email, $row_encryptedpassword, $row_updatedat);
        $user = array(
         'name', 
         'email',
         'encrypted_password',
         'updated_at',
       );
      return $user;
        $stmt->close();


    }




    /**
     * Storing new user
     * returns user details
     */
    public function storeUser($name, $email, $password) {
        $uuid = uniqid('', true);
        $hash = $this->hashSSHA($password);
        $encrypted_password = $hash["encrypted"]; // encrypted password
        $salt = $hash["salt"]; // salt

        $stmt = $this->conn->prepare("INSERT INTO users(unique_id, name, email, encrypted_password, salt, totalpoints, digipoints,total_coupons, created_at, updated_at) VALUES(?, ?, ?, ?, ?,0,0, 0, NOW(), NOW())");
        $stmt->bind_param("sssss", $uuid, $name, $email, $encrypted_password, $salt , $totalpoints, $digipoints, $total_coupons, $created_at,$updated_at );
        $result = $stmt->execute();
        $stmt->close();

        // check for successful store
        if ($result) {
            $stmt = $this->conn->prepare("SELECT id, name, email, encrypted_password, salt, totalpoints, digipoints, total_coupons, created_at, unique_id, updated_at FROM users WHERE email = ?");
            $stmt->bind_param("s", $email);
            $stmt->execute();

$stmt->bind_result($row_user_id, $row_user_name, $row_user_email, $row_user_encryptedpass, $row_user_salt,$row_totalpoints, $row_digipoints,$row_totalcoupons, $row_user_createdat,$row_user_uniqueid, $row_user_updatedat);
$stmt->fetch();

$user = array(
     'id' => $row_user_id, 
     'name' => $row_user_name,
     'email' => $row_user_email,
'encrypted_password' => $row_user_encryptedpass,
'salt' => $row_user_salt,
'totalpoints' => $row_totalpoints,
'digipoints' => $row_digipoints,
'total_coupons' => $row_totalcoupons,
'created_at'=>$row_user_createdat,
'unique_id' => $row_user_uniqueid,
'updated_at' => $row_user_updatedat,
);

            $stmt->close();

            return $user;
        } else {
            return false;
        }
    }

    /**
     * Get user by email and password
     */
    public function getUserByEmailAndPassword($email, $password) {

        $stmt = $this->conn->prepare("SELECT unique_id, name, email, encrypted_password, salt, totalpoints, digipoints, created_at, unique_id, updated_at FROM users WHERE email = ?");

        $stmt->bind_param("s", $email);

        if ($stmt->execute()) {
          $stmt->bind_result($row_user_id, $row_user_name, $row_user_email, $row_user_encryptedpass, $row_user_salt, $row_totalpoints, $row_digipoints,$row_user_createdat,$row_user_uniqueid, $row_user_updatedat);
$stmt->fetch();

$user = array(
     'id' => $row_user_id, 
     'name' => $row_user_name,
     'email' => $row_user_email,
'encrypted_password' => $row_user_encryptedpass,
'salt' => $row_user_salt,
'totalpoints' => $row_totalpoints,
'digipoints' => $row_digipoints,
'created_at' => $row_user_createdat,
'unique_id' => $row_user_uniqeid,
'updated_at' => $row_user_updatedat,
);
            $stmt->close();
            return $user;
        } else {
            return NULL;
        }
    }

    /**
     * Check user is existed or not
     */
    public function isUserExisted($email) {
        $stmt = $this->conn->prepare("SELECT email from users WHERE email = ?");

        $stmt->bind_param("s", $email);

        $stmt->execute();

        $stmt->store_result();

        if ($stmt->num_rows > 0) {
            // user existed 
            $stmt->close();
            return true;
        } else {
            // user not existed
            $stmt->close();
            return false;
        }
    }

    /**
     * Encrypting password
     * @param password
     * returns salt and encrypted password
     */
    public function hashSSHA($password) {

        $salt = sha1(rand());
        $salt = substr($salt, 0, 10);
        $encrypted = base64_encode(sha1($password . $salt, true) . $salt);
        $hash = array("salt" => $salt, "encrypted" => $encrypted);
        return $hash;
    }

    /**
     * Decrypting password
     * @param salt, password
     * returns hash string
     */
    public function checkhashSSHA($salt, $password) {

        $hash = base64_encode(sha1($password . $salt, true) . $salt);

        return $hash;
    }

}

?>

<?php
require_once 'include/DB_Functions.php';
$db = new DB_Functions();
// json response array
$response = array("error" => FALSE);
if (isset($_POST['name']) && isset($_POST['email']) && isset($_POST['password'])) { 
    // receiving the post params
    $name = $_POST['name'];
    $email = $_POST['email'];
    $password = $_POST['password'];

    // check if user is already existed with the same email
    if ($db->isUserExisted($email)) {
        // user already existed
        $response["error"] = TRUE;
        $response["error_msg"] = "User already existed with " . $email;
        echo json_encode($response);
    } else {
        // create a new user
        $user = $db->storeUser($name, $email, $password);
        if ($user) {
            // user stored successfully
            $response["error"] = FALSE;
            $response["uid"] = $user["unique_id"];
            $response["user"]["name"] = $user["name"];
            $response["user"]["email"] = $user["email"];
            $response["user"]["totalpoints"] = $user["totalpoints"];
            $response["user"]["digipoints"] = $user["digipoints"];
            $response["user"]["total_coupons"] = $user["total_coupons"];
            $response["user"]["created_at"] = $user["created_at"];
            $response["user"]["updated_at"] = $user["updated_at"];
            echo json_encode($response);
        } else {
            // user failed to store
            $response["error"] = TRUE;
            $response["error_msg"] = "Unknown error occurred in registration!";
            echo json_encode($response);
        }
    }
} else {
    $response["error"] = TRUE;
    $response["error_msg"] = "Required parameters (name, email or password) is missing!";
    echo json_encode($response);
}
?>

and here is the warning that is my server error_log

[09-Feb-2016 08:36:43 UTC] PHP Warning:  mysqli_stmt::bind_param(): Number of elements in type definition string doesn't match number of bind variables in /home/hevak/public_html/beeken/include/DB_Functions.php on line 62

please do not downgrade i Know this has been asked so many times but i am really really confused here.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dpauf28808 2016-02-09 08:57
关注
You do not use prepared Statement properbly in updateUser.

You have no placeholder in the query string:

$stmt = $this->conn->prepare("update users set name ='$name', email ='$email', encrypted_password = '$encrypted_password' , updated_at = NOW() where email ='$email' ");

Change to:

$stmt = $this->conn->prepare("update users set name =?, email =?, encrypted_password = ?, updated_at = NOW() where email =? "); $stmt->bind_param("ssssss", $name, $email, $encrypted_password , $updated_at, $email);
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

“警告：mysqli_stmt_bind_param（）要求参数1为mysqli_stmt，布尔值在” android database php sql
2017-09-08 02:39

回答 1 已采纳 You have check for errors:- <?php //comment these two lines when code started working fine
mysqli_stmt :: bind_param（）：类型定义字符串中的元素数与绑定变量警告数不匹配 php sql
2015-03-29 12:50

回答 1 已采纳 you appear to be mixing PDO syntax with MySQLi syntax. Please read up on http://wiki.hashphp.org
警告：mysqli_stmt :: bind_param（）变量数与预准备语句中的参数数量不匹配 php
2013-04-06 23:23

回答 1 已采纳 Your query preparation contains zero parameters, since you just dumped the values in there, comple
mysql bind variable_警告：mysqli_stmt_bind_param：类型定义字符串中的元素数与绑定变量数不匹配[重复](Warning: mysqli_stmt_bind_pa...
2021-02-07 06:08

zhuyurrr的博客警告：mysqli_stmt_bind_param：类型定义字符串中的元素数与绑定变量数不匹配[重复](Warning: mysqli_stmt_bind_param: Number of elements in type definition string doesn't match number of bind variables ...
是什么导致了这个错误？ mysqli_stmt :: bind_result（）： mysql php
2018-03-22 17:47

回答 1 已采纳 The question marks in your query are placeholders for values that you'll add later. The number of
警告：mysqli_stmt_bind_param（）期望参数1是mysqli_stmt，给定布尔值？ [重复] php
2014-04-07 20:06

回答 2 已采纳 It seems that you have a missing parameter, you should have 13 parameters and 13 ? check the two p
mysqli_stmt :: bind_result（）：绑定变量数与预准备语句中的字段数不匹配 mysql php
2013-12-18 09:20

回答 2 已采纳 If that really is your code, it may be that either $_POST["name"] or $_POST["password"] is an arra
mysql定义变量字符串类型,mysqli_stmt :: bind_param（）：类型定义字符串中的元素数量与绑定变量的数量不匹配...
2021-02-08 07:25

Hedge Realty的博客 So I have this massive headache inducing query that I need to perform involving 65 form inputs needing to be injected into a database using mysqli prepared statements.The issue I'm running into is tha...
未捕获的错误：调用未定义的方法mysqli_stmt :: get_result（）in php
2019-03-27 03:17

回答 1 已采纳 bind result So if the MySQL Native Driver (mysqlnd) driver is not available, and therefore using
PHP错误 - >警告：mysqli_stmt :: execute（）：无法获取mysqli_stmt | 警告：mysqli_stmt :: close（） mysql php
2010-03-24 23:05

回答 1 已采纳 I don't think it will work this way. When you close the statement (e.g. $menu_stmt->close();) y
mysqli - mysqli_stmt :: bind_param（）应该是一个参考 php
2012-10-30 08:09

回答 2 已采纳 $param looks like this right before you pass it to call_user_func_array: [['ssi'],'mori','gre','2
mysql bind result,警告：mysqli_stmt :: bind_result（）：绑定变量的数量与准备好的语句错误中的字段数量不匹配...
2021-02-07 06:09

weixin_39671964的博客 I had a mysql query and I was converting it to mysqli(prepared statement) but I ran in to a problem which throws the below error,Warning: mysqli_stmt::bind_result(): Number of bind variables doesn't m...
php，mysqli-stmt.bind-param]：类型定义字符串中的元素数与绑定变量数不匹配 mysql php
2011-01-18 20:47

回答 1 已采纳 I think you need more 's'-es in this? $stmt->bind_param("ss", $mtcn, $amount, $currency, $sen
Warning: mysqli_stmt::bind_param(): Number of elements in type definition string doesn‘t match numbe
2022-10-28 16:05

石大憨的博客因为在bind_param 函数必须传入参数，来绑定传入的值，可能是大家不熟悉bind_param 函数的用法。这里的字符串字母只能是上面说的四种类型。bind_param('参数的数据类型'，参数变量)，bind_param('sss',lastname,$...
运行出错：Warning: mysqli_stmt_bind_param() expects parameter 1 to be mysqli_stmt, boolean given in
2018-12-05 09:40

SKY陈的博客 Warning: mysqli_stmt_bind_param() expects parameter 1 to be mysqli_stmt, boolean given in D:\phpStudy\WWW\FunPic\txet\04\addBook.php on line 19Warning: mysqli_stmt_execute() expects parame...
mysql_stmt含义,警告::无效的对象或资源mysqli_stmt。含义和解决方案是什么？
2021-02-07 11:45

weixin_39669202的博客 The following code is throwing the mysterious Warnings. I can't understand what they mean. What do these errors indicate and how to eradicate them?...$q = mysqli_stmt_init($dbconn);$qu...
php mysql bind_PHP mysqli_stmt_bind_param() 函数用法及示例
2021-02-02 20:07

SISUERyep的博客 PHP mysqli_stmt_bind_param() 函数用法及...定义和用法mysqli_stmt_bind_param()函数用于将变量绑定到准备好的语句的参数标记。语法mysqli_stmt_bind_param($stmt,$types,$var1,$var2...);参数序号参数及说明1stm...
php bind_param传入数组,mysqli bind_param用于字符串数组
2021-04-30 00:43

Hu??的博客您不能将两个变量绑定为一个question mark！...之后，将字符串值放在引号之间。这是行不通的。"SELECT name FROM table WHERE city IN (?)"; ( becomes too )$q_prepared->bind_param("s", $ci...
php mysql bind_PHP mysqli_stmt_bind_result() 函数用法及示例
2021-03-16 23:30

浊池的博客 PHP mysqli_stmt_bind_result() 函数用法及示例mysqli_stmt_bind_result()函数将变量绑定到预处理语句以存储结果定义和用法mysqli_stmt_bind_result()函数用于将结果集的列绑定到变量。绑定变量后，您需要调用mysqli...
没有解决我的问题, 去提问

悬赏问题

¥15 R语言Rstudio突然无法启动
¥15 关于#matlab#的问题：提取2个图像的变量作为另外一个图像像元的移动量，计算新的位置创建新的图像并提取第二个图像的变量到新的图像
¥15 改算法，照着压缩包里边，参考其他代码封装的格式写到main函数里
¥15 用windows做服务的同志有吗
¥60 求一个简单的网页(标签-安全|关键词-上传)
¥35 lstm时间序列共享单车预测，loss值优化，参数优化算法
¥15 Python中的request，如何使用ssr节点，通过代理requests网页。本人在泰国，需要用大陆ip才能玩网页游戏，合法合规。
¥100 为什么这个恒流源电路不能恒流？
¥15 有偿求跨组件数据流路径图
¥15 写一个方法checkPerson，入参实体类Person，出参布尔值

PHP警告：mysqli_stmt :: bind_param（）：类型定义字符串中的元素数与数字不匹配

2条回答 默认 最新

悬赏问题

2条回答默认最新