Question

`<?php require_once('Connections/conn_test.php'); ?>
    <?php
         if (!function_exists("GetSQLValueString")) {
    function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
    {
      if (PHP_VERSION < 6) {
        $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
      }

      $theValue = function_exists("mysqli_real_escape_string") ? mysqli_real_escape_string($theValue) : mysqli_escape_string($theValue);

      switch ($theType) {
        case "text":
          $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
          break;    
        case "long":
        case "int":
          $theValue = ($theValue != "") ? intval($theValue) : "NULL";
          break;
        case "double":
          $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
          break;
        case "date":
          $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
          break;
        case "defined":
          $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
          break;
      }
      return $theValue;
    }
    }
    ?>
    <?php
    // *** Validate request to login to this site.
    if (!isset($_SESSION)) {
      session_start();
    }

    $loginFormAction = $_SERVER['PHP_SELF'];
    if (isset($_GET['accesscheck'])) {
      $_SESSION['PrevUrl'] = $_GET['accesscheck'];
    }

    if (isset($_POST['student_name'])) {
      $loginUsername=$_POST['student_name'];
      $password=$_POST['student_password'];
      $MM_fldUserAuthorization = "";
      $MM_redirectLoginSuccess = "LoginSuccess.php";
      $MM_redirectLoginFailed = "LoginFailed.php";
      $MM_redirecttoReferrer = false;

      $LoginRS__query=sprintf("SELECT StudentName, Password FROM studentinfo WHERE StudentName=%s AND Password=%s",
        GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text")); 

      $LoginRS = mysqli_query($LoginRS__query, $conn) or die(mysqli_error());
      $loginFoundUser = mysqli_num_rows($LoginRS);
      if ($loginFoundUser) {
         $loginStrGroup = "";

        if (PHP_VERSION >= 5.1) {session_regenerate_id(true);} else {session_regenerate_id();}
        //declare two session variables and assign them
        $_SESSION['MM_Username'] = $loginUsername;
        $_SESSION['MM_UserGroup'] = $loginStrGroup;       

        if (isset($_SESSION['PrevUrl']) && false) {
          $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];  
        }
        header("Location: " . $MM_redirectLoginSuccess );
      }
      else {
        header("Location: ". $MM_redirectLoginFailed );
      }
    }
    ?>

任何人都可以帮我这个代码吗？而且我不知道如何修复它，我在sql查询中非常糟糕继承人错误我得到了TIA先生和我是。＆＃39;

警告：function_exists（）预计在第10行D：\ xampp \ htdocs \ SITE RMTU \ Portal Login.php中给出1个参数0，

警告：mysqli_escape_string（）需要2个参数，1在D：\ xampp \ htdocs \ SITE RMTU \ Portal Login.php第10行中给出

警告：function_exists（）预计在第10行D：\ xampp \ htdocs \ SITE RMTU \ Portal Login.php中给出1个参数0，

警告：mysqli_escape_string（）需要2个参数，1在D：\ xampp \ htdocs \ SITE RMTU \ Portal Login.php第10行中给出

警告：mysqli_query（）期望参数1为mysqli，第56行的D：\ xampp \ htdocs \ SITE RMTU \ Portal Login.php中给出的字符串

警告：mysqli_error（）预计在第56行D：\ xampp \ htdocs \ SITE RMTU \ Portal Login.php中给出1个参数，0

第10行代码

$theValue = function_exists("mysqli_real_escape_string") ? mysqli_real_escape_string($theValue) : mysqli_escape_string($theValue);

第56行代码

$LoginRS = mysqli_query($LoginRS__query, $conn) or die(mysqli_error());

Answer 1

如果你在程序风格中使用它，你应该这样写：

mysqli_real_escape_string ( mysqli $link , string $escapestr )

关于此，您可以阅读hear

警告：mysqli_real_escape_string（）只需要2个参数，1可以帮助我吗？

1 个答案: