PHP错误未知

So I have created a function:

function user_data($user_id) {
    $data = array();
    $user_id = (int)$unser_id;

    $func_num_args = func_num_args();
    $func_get_args = func_get_args();

    if ($func_num_args > 1){
        unset($func_get_args[0]);

        $fields = '`' . implode('`, `', $func_get_args) . '`';
        $data = mysql_fetch_assoc(mysql_query("SELECT $fields FROM `users` WHERE 'user_id' = $user_id"));


        return $data;
    }

}

By mistake I crated a typo unser_id but didnt relise up until I had to troubleshoot further along the line in my code.

I am creating a login script but the point in which I am having to troubleshoot is showing profile data from my other users.

The reason I point out the typo part is because it for some reason is a strange error. If I change it to user_id it will not allow me to login anymore. If I leave it as under_id it works.

I am having to troubleshoot because I believe this is the cause of the problem I am having trying to view other users profiles and showing their information and not mine which is happening right now.

For example, in my url www.mywebsite.com/myprofile shows my username and my email address, if I type in www.mywebsite.com/otherprofile it still shows my information. But it does show a query if I type a user that does not exist in my database so that part works.

I believe the issue all stems form this typo but am really stuck as to appraoch a resolve?

So here is the other code:

profile page:

if (isset($_GET['username']) === true && empty ($_GET['username']) === false) {
    $username = $_GET['username'];



    if (user_exists($username) === true) {
        $user_id  = user_id_from_username($username);   
        $profile_data = user_data($user_id, 'first_name', 'last_name', 'email');

    ?>


    <p><?php echo $profile_data['profile']; ?></p>

    <h1><?php echo $profile_data['first_name']; ?> profile</h1>
    <p><?php echo $profile_data['email'] ?></p>



    <?php

    } else {
        echo 'Sorry, that user does not exist';
    }
    } else {
        header('Location: index.php');
    exit();
}

Here all the related functions:

function logged_in(){
    return (isset($_SESSION['user_id'])) ? true : false;    
}


function user_exists($username) {
    $username = sanitize($username);
    $query = mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `username` = '$username'");
    return (mysql_result($query, 0) == 1) ? true : false;
}

function email_exists($email) {
    $email = sanitize($email);
    $query = mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `email` = '$email'");
    return (mysql_result($query, 0) == 1) ? true : false;
}




function user_active($username) {
    $username = sanitize($username);
    $query = mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `username` = '$username' AND `active` = 1");
    return (mysql_result($query, 0) == 1) ? true : false;
}




function user_id_from_username($username) {
    $username = sanitize($username);
    return mysql_result(mysql_query("SELECT `user_id` FROM `users` WHERE `username` = '$username'"), 0, 'user_id'); 
}




function login($username, $password) {
    $user_id = user_id_from_username($username);

    $username = sanitize($username);
    $password = md5($password);

    return (mysql_result(mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `username` = '$username' AND `password` = '$password' "), 0) == 1) ? $user_id : false;
}

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doubeiji2602 2014-06-16 21:44
关注
The problem in your first function is that you are quoting your column name with single quotes:

$data = mysql_fetch_assoc(mysql_query("SELECT $fields FROM `users` WHERE 'user_id' = $user_id")); ^ ^

That means that you are not actually using the column user_id but a string.

You should change that to:

$data = mysql_fetch_assoc(mysql_query("SELECT $fields FROM `users` WHERE `user_id` = $user_id"));

(or without the backticks...).

Apart from that you are using the deprecated mysql_* functions and you don't have any error handling. You should switch to PDO or mysqli using prepared statements and make sure it throws exceptions (both can) so that you know exactly what goes wrong.
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(1条)

报告相同问题？

关注问题

PHP错误未知 php
2014-06-16 21:36

回答 2 已采纳 The problem in your first function is that you are quoting your column name with single quotes: $
运行php artisan migrate时出现未知的数据库错误 php
2017-06-23 14:58

回答 1 已采纳 The php artisan migrate command doesn't create the database for you. Here is a potential way you c
显示未定义变量的Php错误：文件，未知错误 php
2015-04-17 08:33

回答 2 已采纳 $files is undefined means that you use a variable that you didn't defined (obviously). By looking
PHP 5.3和PHP 5.4出现FastCGI Error解决方法
2020-10-24 17:15

主要介绍了PHP 5.3和PHP 5.4出现FastCGI Error解决方法,需要的朋友可以参考下
php artisan - 任何命令的未知表错误 mysql php
2015-08-10 10:58

回答 1 已采纳 A Laracasts user very kindly helped me out with this answer: If you're referencing a model fro
未知的MySQL插入错误 mysql php sql
2018-04-27 01:28

回答 2 已采纳 You Should try this <?php if (!mysqli_query($connection,"INSERT INTO Persons (FirstName
注销时，PHP索引页面会发出会话未知错误 php
2017-04-13 09:05

回答 1 已采纳 The issue is that you don't guard the situation where the email session var is unset, as is after
如何屏蔽PHP错误
2018-05-19 09:00

jiax_gg的博客 @屏蔽法 @在php中一个抑制错误的符号，即便是你开启了报错功能，只要在错误语句之前加上@符号，便可屏蔽了错误信息。使用@抑制错误之前，会出现一个警告错误。error_reporting屏蔽法在php文件开始之前，我们可以...
PHP CURL帖子给出了未知错误 ajax php
2014-04-16 07:07

回答 2 已采纳 Looks like its gzip content to me. Use this header to handle this: curl_setopt($ch, CURLOPT_ENCOD
PHP YII框架错误：未知命令“webapp” php
2015-05-18 10:06

回答 2 已采纳 There is no webapp command anymore in yii2. Creating a project is done with composer create-projec
qcachegrind错误：未知的文件格式。从php xdebug生成的文件 php
2016-10-28 05:52

回答 1 已采纳 that file is a trace file not a callgrind file. i seems you set trace_output_name and profiler_ou
使用php实现从身份证中提取生日
2021-01-20 01:21

//0：未知错误，1：身份证格式错误，2：无错误 $result['flag']='';//0标示成年，1标示未成年 $result['tdate']='';//生日，格式如：2012-11-15 if(!preg_match(/^(\d{15}$|^\d{18}$|^\d{17}(\d|X|x))$/,$IDCard)...
MySQL不存在未知列错误 mysql php sql
2017-05-04 12:34

回答 3 已采纳 WHERE gets executed before SELECT and hence, you can't use column aliases inside it, try with colu
php提取身份证号码中的生日日期以及验证是否为成年人的函数
2021-01-21 15:48

php 提取身份证号码中的...//：未知错误，：身份证格式错误，：无错误 $result['flag']='';//标示成年，标示未成年 $result['tdate']='';//生日，格式如：-- if(!eregi(^[-]([-a-zA-Z]{}|[-a-zA-Z]{})$,$IDCard)){
php 发送邮件 ehlo,SMTP错误：EHLO命令失败：-ERR未知命令
2021-04-26 14:49

朝辞暮归的博客我正在尝试使用此PHP代码发送电子邮件：require("PHPMailer-master/src/PHPMailer.php");require("PHPMailer-master/src/SMTP.php");require("PHPMailer-master/src/Exception.php");$from = "admin@mydomain.com";$...
没有解决我的问题, 去提问

悬赏问题

¥15 深度学习根据CNN网络模型，搭建BP模型并训练MNIST数据集
¥15 lammps拉伸应力应变曲线分析
¥15 C++ 头文件/宏冲突问题解决
¥15 用comsol模拟大气湍流通过底部加热（温度不同）的腔体
¥50 安卓adb backup备份子用户应用数据失败
¥20 有人能用聚类分析帮我分析一下文本内容嘛
¥15 请问Lammps做复合材料拉伸模拟，应力应变曲线问题
¥30 python代码，帮调试，帮帮忙吧
¥15 #MATLAB仿真#车辆换道路径规划
¥15 java 操作 elasticsearch 8.1 实现索引的重建

PHP错误未知

2条回答 默认 最新

悬赏问题

2条回答默认最新