stackoom
  简体   繁体   中英

php user registration form problem

 原文  2011-05-16 08:24:59       php

Question

 <?php 
 $yourname=$_POST["yourname"]; 
 $email=$_POST["email"]; 
 $password=$_POST["password"]; 

 $country=$_POST["country"]; 

 include('includes/config.php');

 $result = mysql_query("
 INSERT INTO `ban`.`users` 
 (`userid`, 
 `email`, `password`, `yourname`, `country`)
  VALUES (NULL, '$email', '$password', '$yourname', '$country'")
   or die (mysql_error());
    ?>

this is the page which goes after user pressing submit button in registration form. i want to insert data from form variables.what's wrong with it?

this is the error i got:--- You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 4

5 answers

solution1
 3 ACCPTED  2011-05-16 08:35:59

you don't have a closing bracket.

VALUES (NULL, '$email', '$password', '$yourname', '$country' ) ")

solution2
 2  2011-05-16 08:36:16

I think it crashes because of the missing ")" after '$country' . 

 $result = mysql_query("
 INSERT INTO `ban`.`users` 
 (`userid`, 
 `email`, `password`, `yourname`, `country`)
  VALUES (NULL, '$email', '$password', '$yourname', '$country')")
   or die (mysql_error());
    ?>

solution3
 2  2011-05-16 08:41:22

as a general rule I always print out my queries the first time I make it work just to be sure they're not the problem if something goes wrong. 

$query = "INSERT INTO `ban`.`users` 
 (`userid`, `email`, `password`, `yourname`, `country`)
  VALUES (NULL, '{$email}', '{$password}', '{$yourname}', '{$country}')";
echo $query;
$result = mysql_query($query) or die (mysql_error());

Then you pick the output of that echo and try it in your mysql client of choice (phpmyadmin, sequel pro etc..) so you can have a quick review of eventual errors if you can't spot them yourself.

In this case the problem is the missing ")" at the end of the query.
But you also have to sanitize in some way the values you're inserting, doing an sql query directly from user data is very very very dangerous (let alone that you have to strip out single quotes "'" with addslashes().

solution4
 0  2011-05-16 08:28:00

Remove userid , and the NULL inserting from sql. Also use "{$password}" insead of '$password' & for the others.

solution5
 0  2011-05-16 08:33:41

Your SQL is all over the place. Look up how to form a correct SQL statement: http://www.w3schools.com/sql/sql_syntax.asp

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question php user form registration User registration form error php my Problem is that i want to register user in php registration form but the problem is that it cannot be add on database Is there a security problem with my registration PHP form? How to call user registration form in php Problem with User Registration Validation on user registration form? Customized User Registration Form Redirect user back to registration page but keep their filled in form in php php set default text for optional value in form after user registration?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM