這是我這是不正常的PHP代碼....Mysql查詢不接受if子句嗎?
它沒有采取查詢這是在if條件和每一個它的執行別的兼職....
<?php
include('admin/class.php');
**這裏是我的DB連接**
$hostname="localhost";
$username="root";
$password="";
$dbhandle = mysql_connect($hostname, $username, $password)
or die("Unable to connect to MySQL");
echo "Connected to MySQL<br>";
$se = mysql_select_db("timesheet1234",$dbhandle)
or die("Could not select timesheet1234");
echo "connected to db";
if(isset($_POST['save']))
{
echo "post if";
[email protected]$_POST['selpro'];
[email protected]$_POST['mon'];
[email protected]$_POST['tue'];
[email protected]$_POST['wed'];
[email protected]$_POST['thu'];
[email protected]$_POST['fri'];
[email protected]$_POST['sat'];
[email protected]$_POST['sun'];
這裏是我的代碼問題出在哪裏開始,它不能正常工作
if(isset($_SESSION['user']))
{
echo "session user";
$sql="UPDATE empdaytimesheet SET `project code`='$sel',`mon`='$mon',`tue`='$tue',`wed`='$wed',`thu`='$thu',`fri`='$fri',`sat`='$sat',`sun`='$sun' where `username`='".$_SESSION['user']."'";
$res=mysql_query($sql,$dbhandle);
if($res){
echo "<script type='text/javascript'>";
echo "alert('TimeSheet Saved..!')";
echo "</script>";
echo "<script type='text/javascript'>";
echo "window.location='my_timesheet.php'";
echo "</script>";
}
else
{
echo "<script type='text/javascript'>";
echo "alert('Some Error Occured ! Retry..!')";
echo "</script>";
echo "<script type='text/javascript'>";
echo "window.location='my_timesheet.php'";
echo "</script>";
}
}
}
?>
您正在使用[**的**過時的數據庫API(http://stackoverflow.com/q/12859942/19068),並應使用一個[現代替代](http://php.net/manual/en/mysqlinfo.api.choosing.php)。你也**易受[SQL注入攻擊](http://bobby-tables.com/)**,現代的API會使[防禦]更容易(http://stackoverflow.com/questions/60174/best-way-to-prevent-sql-injection-in-php)自己從。 – Quentin 2013-05-11 07:07:30
'SET project code ='$ sel''是什麼意思? – 2013-05-11 07:08:09
這是db中的一個列名.. – Ganesh 2013-05-11 07:09:02