stackoom
  简体   繁体   中英

Deleting and redirecting to the same page

 原文  2019-03-17 07:52:18       javascript/ php/ mysql

Question

Hello I have this delete function and I don't have any function set on it yet because I want to delete the data and redirect in the same page but I don't know how I tried researching but it doesn't work. In this page all of the information shown was sent from a page to this page in order for the user to view the schedule then have the option of deleting it but I don't know how to delete data and redirect into the same page without messing up the other data being shown..I tried using the header(location:) function but the moment I redirect the data that is shown there is not being shown because I did not pass any value while redirecting need help here, this is my code 

if ($teacher<>""){
    $query1 = mysqli_query($conn," SELECT *  from schedule natural join instructor where day ='t' and schedule.instructorID ='$teacher' and timeID ='$id' and grade = '$grade' and semester = '$semester'");
}
elseif ($room<>""){
    $query1 = mysqli_query($conn,"SELECT * from schedule  natural join instructor where day = 't' and  schedule.room = '$room' and timeID ='$id' and grade = '$grade' and semester = '$semester'");
}
elseif ($strand<>""){
    $query1 = mysqli_query($conn,"SELECT * from schedule  natural join instructor where day = 't' and  schedule.strand= '$strand' and timeID ='$id' and grade = '$grade' and semester = '$semester'");
}
$row1 = mysqli_fetch_array($query1);
$id1 = $row['scheduleID'];
$count=mysqli_num_rows($query1);
if ($count==0)//checking
{
    //echo "<td></td>";

}
else
{
    //print 
    echo "<li class='showme'>"; 
    echo "<a href='#' id='$id1' class='delete' title='Delete'>Remove</a>";
    echo $row1['subject'];
    echo "</li>";
    echo "<li class='$displayc'>$row1[strand]</li>";
    echo "<li class='$displaym'>$row1[fname], $row1[lname]</li>";                                           
    echo "<li class='$displayr'>Room $row1[room]</li>";

    echo "</ul>";
    echo "</div>";
}   
?>
</td>

then I have the delete.php but I don't have any set function in there yet since it I only know how to delete using the form but the redirecting is the problem when you delete because of the reason stated above

1 answers

solution1
 0  2019-03-17 08:55:56

Big security flaw: SQL Injection Use prepared statements for your queries

In your header location, just append a query string .

The query string can be retrieved with : 

$grade = int($_GET['grade']);
$semester = int($_GET['semester']);

Where grade and semester are the parameter name. Note that the $_GET[...] thingy has been wrapped with int(...) for sanitation purposes. This ensure that $grade and semester will be ´int` (numbers).

Your location header should look like: LOCATION: http://yoursite/diplay-page.php?grade=7&semester=8

Also, when displaying, escape your data! Right now, you are vulnerable to XSS injections .

If you do not know how, start with OWASP advices : https://www.owasp.org/index.php/PHP_Top_5

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Redirecting after deleting page / route in React and Redux Redirecting same page without reloading in rails Redirecting a page into the same tabbed window using JavaScript? Delete not working and redirecting to the same page - Laravel Not redirecting to the page Redirecting page How to change property of field while redirecting to same page Link not redirecting to other pages but works when directed to a division on the same page After redirecting to a php page with request parameters and processing them, how to I return to the same page without the parameters? loging php page not redirecting
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM