I've got a script that i've downloaded of the net to edit multiple fields from my sql database, and works fine EXCEPT I want to add the strip slashes bit to it so it will save what I type in. However, I tried, and totally cleared 2 fields for all records on my db, so not happy. So here is the script, can anyone help me put the stripslashes bit where it should be please...
The stripslashes are important for 'item' and 'description' fields.
Code: <?php
"db connection area"
$sql="SELECT * FROM $tbl_name ORDER BY category ASC";
$result=mysql_query($sql);
// Count table rows
$count=mysql_num_rows($result);
?>
<!--
<FORM method="post" action="<?php echo $PHP_SELF?>">
-->
<p>
<table border='1' cellspacing='0' width='100%' style='border-collapse: collapse' bordercolor='#000000'>
<form name="form1" method="post" action="">
<tr>
<th>Category/Subcategory</th>
<th>Product/Code</th>
<th>Description</th>
<th>Qty/Price 1</th>
<th>Qty/Price 2 </th>
<th>Qty/Price 3 </th>
<th>Qty/Price 4 </th>
<th>Qty/Price 5 </th>
<th>Weight/Status</th>
</tr>
<?php
while($rows=mysql_fetch_array($result)){
?>
<tr>
<? $id[]=$rows['id']; ?>
<td><input name="category[]" type="text" id="category" value="<? echo $rows['category']; ?>" size="30"><br />
<input name="subcategory[]" type="text" id="subcategory" value="<? echo $rows['subcategory']; ?>" size="30" /></td>
<td><input name="item[]" type="text" id="item" value="<? echo $rows['item']; ?>" size="30"><br />
<input name="code[]" type="text" id="code" value="<? echo $rows['code']; ?>" size="30" /></td>
<td><textarea name="description[]" cols="40" rows="3" id="description" type="text"><? echo $rows['description']; ?></textarea></td>
<td><input name="qty1[]" type="text" id="qty1" value="<? echo $rows['qty1']; ?>" size="5"><br />
<input name="price1[]" type="text" id="price1" value="<? echo $rows['price1']; ?>" size="5" /></td>
<td><input name="qty2[]" type="text" id="qty2" value="<? echo $rows['qty2']; ?>" size="5"><br />
<input name="price2[]" type="text" id="price2" value="<? echo $rows['price2']; ?>" size="5" /></td>
<td><input name="qty3[]" type="text" id="qty3" value="<? echo $rows['qty3']; ?>" size="5"><br />
<input name="price3[]" type="text" id="price3" value="<? echo $rows['price3']; ?>" size="5" /></td>
<td><input name="qty4[]" type="text" id="qty4" value="<? echo $rows['qty4']; ?>" size="5"><br />
<input name="price4[]" type="text" id="price4" value="<? echo $rows['price4']; ?>" size="5" /></td>
<td><input name="qty5[]" type="text" id="qty5" value="<? echo $rows['qty5']; ?>" size="5"><br />
<input name="price5[]" type="text" id="price5" value="<? echo $rows['price5']; ?>" size="5" /></td>
<td><input name="weight[]" type="text" id="weight" value="<? echo $rows['weight']; ?>" size="5"><br />
<input name="status[]" type="text" id="status" value="<? echo $rows['status']; ?>" size="5" /></td>
</tr>
<?php
}
?>
</table>
<input type="submit" name="Submit" value="Submit" class="button1">
</form>
<?php
// Check if button name "Submit" is status, do this
if($Submit){
for($i=0;$i<$count;$i++){
$sql1="UPDATE $tbl_name SET status='$status[$i]', category='$category[$i]', subcategory='$subcategory[$i]', item='$item[$i]', description='$description[$i]', code='$code[$i]', qty1='$qty1[$i]', price1='$price1[$i]', qty2='$qty2[$i]', price2='$price2[$i]', qty3='$qty3[$i]', price3='$price3[$i]', qty4='$qty4[$i]', price4='$price4[$i]', qty5='$qty5[$i]', price5='$price5[$i]', weight='$weight[$i]' WHERE id='$id[$i]'";
$result1=mysql_query($sql1);
}
}
if($result1){
echo "<p>Records Updated</p>";
echo('<meta http-equiv="refresh" content="0">');
}
mysql_close();
?>
Thankyou in advance
fopen() security
As i understood the usage of fopen() for it to function correctly the Dir you write to has to be rw enabled for the php group, so that fopen() can acces the Dir to write to it. When I try to write
Does deleting the spmlog directory critical?
Hi Everyone,
Do While statement
hi guys,This may sound trivial but im new to php and as part of an assignmenti have to construct the 10 green bottles song using the do while statement. I can do the statement but it is itengrating
Preventing SQL Injection
I have a question about SQL Injection, In some of our code we use this:
Include with Parameters
In a particular page I would like to include a file that requires $_GET parameters.when I go to this sort of url I get what I want.http://www.example.com/test.php?id=1234567890I want the url to be
selectbox+database connection retrive problem
Code: [Select] <tr> <th align="left" scope="col"><span class="style2 style8">Features
Email Processor
I have a few questions so this post will be a larger one! Sorry, but I'm a bit of a PHP newbie so be gentle with me! Awhile back I wrote out a simple forum to email processor that I used with a few
ECC6 - Single sign-on
We are in the process of upgrading to ECC 6 which will support single sign on with user passwords aligned by our active directory to the same as those used to access the Network. My query is that we
FAGL_FC_TRANSLATION FAS52 New GL ECC 6.0
Hello,
Get last modified date of web page
Hai All, In php how can i get last modified date of a give web page . I have tried to get last modified from the header but for some pages the server of that webpage doesn't returns lastmodified
