我正在尝试通过带有php的Web表单将一个小图像插入到mysql数据库中。但它不起作用。怎么了?
形式:
<form action="http://www.yeahthatrocks.com/update2.php" method="post" enctype="multipart/form-data">
Game Name: <input name="game_name" type="text" size="25" maxlength="255" /><br></br>
Release Date: <input name="release_date" type="text" size="25" /><p></p>
<input type="hidden" name="MAX_FILE_SIZE" value="2000000">
Cover Image: <input type="file" name="cover" id="cover"><br><br>
<input name="upload" type="submit" id="upload" value="upload" />
</form>
插入图片查询:
$fileName = $_FILES['cover']['name'];
$tmpName = $_FILES['cover']['tmp_name'];
$fileSize = $_FILES['cover']['size'];
$fileType = $_FILES['cover']['type'];
$fp = fopen($tmpName, 'r');
$content = fread($fp, filesize($tmpName));
$content = addslashes($content);
fclose($fp);
if(!get_magic_quotes_gpc())
{
$fileName = addslashes($fileName);
}
$query = "INSERT INTO games set name='".$fileName."', size='".$fileSize."', type='".$fileType."', content='".$content."'";
mysql_query($query) ;
答案 0 :(得分:1)
最有可能addslashes()。使用real escape function或更好的parameterized queries。
答案 1 :(得分:0)
这是一个一直对我有用的简单例子:
# create table blobs( id int(11) NOT NULL auto_increment, myblob longblob, PRIMARY KEY (id));
$host = "localhost";
$username = "blobtest";
$password = "blobtest";
$database = "blobtest";
$link_id = @mysql_connect($host, $username, $password);
@mysql_select_db($database);
$blob = file_get_contents('stripe.png');
$bdata = addslashes($blob);
$qry = "INSERT INTO blobs VALUES(NULL, '$bdata')";
mysql_query($qry);