堆栈内存溢出
  简体   繁体   English

如何使用PHP从表单中插入mySQL数据库中的数据?

[英]How do I insert data in a mySQL database from a form using PHP?

 原文  2014-02-22 18:22:23       php/ html/ mysql/ sql

问题描述

I need to insert students into my database. 我需要将学生插入我的数据库。

The Students table has 3 fields. 学生表有3个字段。 id_Students , Student_firstname and Student_surname id_StudentsStudent_firstnameStudent_surname

I want the user to insert the data into a form, press a submit button and then the data be added to the database, but I'm not having much luck. 我希望用户将数据插入表单,按下提交按钮然后将数据添加到数据库中,但我没有太多运气。

Here is what I have done so far: 这是我到目前为止所做的:

The form: 表格: 

<form method="POST">
First name: <input type="text" name="firstname"><br>
Surname: <input type="text" name="surname">
<input type="submit" name="action"></button>
</form>

The function to add the student: 添加学生的功能: 

function addStudent()
{
$data = "INSERT INTO Students (Student_firstname, Student_surname)
VALUES('$_POST['firstname']', '$_POST['surname']')";
if(!$data)
{
die("Invalid Query: " . mysql_error());
}
}

if( isset($_POST['action']))
        {
            addStudent();
        }

My first thought is that I am not asking the user to input the student id number, but this is set to auto-incrementing, which made me think I could add the other 2 fields and the id would be filled in automatically. 我的第一个想法是我不是要求用户输入学生ID号,但是这被设置为自动递增,这使我认为我可以添加其他2个字段并且id将自动填写。

Furthermore, I do not recieve my error message, the data is simply not put into the table. 此外,我没有收到我的错误消息,数据根本没有放入表中。

5 个解决方案

解决方案1
 1  2014-02-22 18:27:14

-- You need to execute query. - 您需要执行查询。
-- your query is not correct - 您的查询不正确

try like this: 试试这样: 

function addStudent()
{
 $data = "INSERT INTO Students (Student_firstname, Student_surname)
 VALUES('".$_POST['firstname']."', '".$_POST['surname']."')";
 $mysqli = new mysqli("host", "my_user", "my_password", "db_name");
 if ($mysqli->connect_errno) {
    printf("Connect failed: %s\n", $mysqli->connect_error);
     exit();
 }


 if(!$mysqli->query($data))
 {
   die("Invalid Query: " . $mysqli->error());
  }
}

解决方案2
 1  2014-02-22 18:27:58

You should use prepared statements so you can combat SQL Injection from malicious users, and a conditional statement in order to evaluate whether or not our insertion was successful. 您应该使用预准备语句,以便可以与恶意用户对抗SQL注入,并使用条件语句来评估我们的插入是否成功。 

function addStudent(){
    $mysqli = new mysqli('host', 'user', 'password', 'database');
    $stmt = $mysqli->prepare('INSERT INTO Students (Student_firstname, Student_surname) VALUES(?, ?)');
    $stmt->bind_param('ss', $_POST['firstname'], $_POST['surname']);
    if($stmt->execute()):
        echo 'We have successfully added this student.';
    else:
        exit('execute() failed: ' . $stmt->error);
    endif;
    $stmt->close();
}

解决方案3
 0  2014-02-22 18:27:01

you have to run the query using mysql_query 你必须使用mysql_query运行查询 

$sql = "INSERT INTO Students (Student_firstname, Student_surname)
VALUES('$_POST['firstname']', '$_POST['surname']')";
$result=mysql_query($sql);

also its better to use mysqli than mysql as its being deprecated. 因为它被弃用,使用mysqli比使用mysql更好。 You may also need to read a bit about SQL injection also 您可能还需要阅读一些有关SQL injection

解决方案4
 0  2014-02-22 18:29:12

  • First thing below is not correct 下面的第一件事是不正确的

    $data = "INSERT INTO Students (Student_firstname, Student_surname) VALUES('$_POST['firstname']', '$_POST['surname']')"; $ data =“INSERT INTO Students(Student_firstname,Student_surname)VALUES('$ _ POST ['firstname']','$ _POST ['surname']')”;

  • it should be as 它应该是

    $data = "INSERT INTO Students (Student_firstname, Student_surname) VALUES('".$_POST['firstname']."', '".$_POST['surname']."')"; $ data =“INSERT INTO Students(Student_firstname,Student_surname)VALUES('”。$ _ POST ['firstname']。“','”。$ _ POST ['surname']。“')”;

  • 2nd thing 第二件事

You are not executing the query you need use mysql_query() learn here http://in2.php.net/mysql_query 你没有执行你需要使用的查询mysql_query()在这里学习http://in2.php.net/mysql_query

  • 3rd thing your code is vulnerable to sql injection so use mysqli_* functions or PDO with prepare statement. 第三件事你的代码容易受到sql注入,所以使用mysqli_ *函数或PDO和prepare语句。

解决方案5
 0  2014-02-22 18:31:06

You haven't executed the Query. 您尚未执行查询。 After 

$data = "INSERT INTO Students (Student_firstname, Student_surname)
VALUES('$_POST['firstname']', '$_POST['surname']')";

You should execute your SQL query by, 你应该执行你的SQL查询, 

 $exec = mysql_query( $data, $con );

where $data is your query & $con is estabilishing mysql connection. 其中$data是你的查询& $con是建立mysql连接。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何使用SESSION数据来选择1个数据库条目,然后使用PHP和MySQL的表单中的数据插入到另一个表中? - How do I use SESSION data to SELECT 1 database entry and then INSERT into another table with data from a form as well with PHP and MySQL? 使用PDO和PHP将数据从表单插入MySQL数据库 - Using PDO and PHP to insert data from form into MySQL database 如何使用php和mysql代码在wordpress数据库中插入表单数据 - How to insert form data in wordpress database using php and mysql code 如何使用PHP中的Foreach将数据从jquery文本框插入到MySql数据库中,或通过其他任何方法来实现此目标? - How do I INSERT data from jquery textBox into MySql database using Foreach in Php, or any other way to accomplish this goal? 如何使用MySQL将数组插入php中的数据库? - How do I insert an array into a database in php using MySQL? 如何从表单中获取信息以使用XAMPP插入mySQL数据库? - How do I get the information from my form to insert into a mySQL database using XAMPP? 使用 (SELECT) 和 (INSERT INTO) 从 PHP 表单将数据插入 MySQL 数据库 - Insert data into MySQL database from PHP form with (SELECT) and (INSERT INTO) 如何使用 jQuery 将 HTML/PHP 数据插入 MySQL 数据库 - How to Insert from HTML/PHP Data into MySQL Database using jQuery 如何使用带有mysqli和php的准备好的语句成功地将信息从表单插入数据库? - How do I successfully insert information from a form into a database using a prepared statement with mysqli and php? 我如何制作一个 PHP 表单,从 mySQL 数据库中提取数据并在按下按钮时将其显示在网页上? - how do i make a PHP form that pulls data from mySQL database and display it on webpage when the button is pressed?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM