I want to submit javascript code formatted as plaintext to display a JS example on an HTML page.
When I submit the following snippet via SQL, the query runs successfully. However, when I submit the exact same text via a textarea which is properly connected to the DB, the query does not complete but does not display an error.
<text>
var input = document.getElementById(/'numberInput/');
if (input < 0) {
alert(/'Number was negative./');
}else if(input <= 10){
alert(/'Number was between 0 - 10/');
}else{
alert(/'Number was greater than 10./');
}
</text>
When I run the following query, the row is added succesfully...
INSERT INTO `test` (`id`, 'data')
VALUES (NULL, '<text>
var input =
document.getElementById(/\'numberInput/\');
if (input < 0)
{
alert(/\'Number was negative./\');
}
else if(input <= 10)
{
alert(/\'Number was between 0 - 10/\');
}
else{
alert(/\'Number was greater than 10./\');
}
</text>'
);
Below is the php code which accepts the string from the textarea and saves it in the var $data
<?php
$con = mysqli_connect('127.0.0.1', 'root', '', '');
if(!$con)
{
echo 'Error Connecting to DB Server';
}
if(!mysqli_select_db($con, 'a3'))
{
echo 'Error Selecting DB';
}
$data = $_POST['data'];
$query = "INSERT INTO test (data) VALUES ('$data')";
if(!mysqli_query($con,$query))
{
echo 'Error Inserting Page to DB';
}else
{
echo 'Inserted Page to DB';
}
header("refresh:0; url=index.php");
?>
