我有这个注册表单,我喜欢使用php将所有数据发送到我的mysql服务器。这是我的代码:
$gidnumber = htmlentities($_POST['stud_idnumber']);
$gfirstname = htmlentities($_POST['stud_firstname']);
$glastname = htmlentities($_POST['stud_lastname']);
$gcourse = htmlentities($_POST['stud_course']);
$gyear = htmlentities($_POST['stud_year']);
$gpassword = htmlentities($_POST['stud_password']);
出于安全考虑,我尝试使用real_escape_string
$stud_idnumber = mysqli_real_escape_string($con,$gidnumber);
$stud_firstname = mysqli_real_escape_string($con,$gfirstname);
$stud_lastname = mysqli_real_escape_string($con,$glastname);
$stud_course = mysqli_real_escape_string($con,$gcourse);
$stud_year = mysqli_real_escape_string($con,$gyear);
$stud_password = mysqli_real_escape_string($con,$gpassword);
接下来是:
$sql3 = "INSERT INTO users_student
(idnumber, firstname, lastname, course, year, password)
VALUES "." ('$stud_idnumber','$stud_firstname','$stud_lastname',
'$stud_course','$stud_year','$stud_password') ";
$q = mysqli_query($con,$sql3);
echo "<br/><br/><br/><br/><br/><br/><br/>";
echo $stud_idnumber;
echo $stud_firstname;
echo $stud_lastname;
echo $stud_course;
echo $stud_year;
echo $stud_password;
echo部分用于检查php是否真正获取文本框中的所有变量。在我的页面上,它成功显示了所有用户在文本框中输入的内容(名字,姓氏等)。但是当我检查我的数据库时,它没有将其保存在那里。
它也没有给我任何错误。