Form Help


Posted on 16th Feb 2014 07:03 pm by admin

Here is the form:

Line number On/Off | Expand/Contract<? include("../include/session.php"); ?> <?php if ($submit) { $sql = "UPDATE productimages SETtitle='".$_POST['title']."', upjpg='".$_POST['upjpg']."',uptiff='".$_POST['uptiff']."',uppng='".$_POST['uppng']."', chungshi='".$_POST['chungshi']."', stretchwalker='".$_POST['stretch_walker']."',akaishi='".$_POST['akaishi']."', bellamargiano='".$_POST['bellamargiano']."',mbt='".$_POST['mbt']."', upthumb='".$_POST['upthumb']."'where id ='".mysql_real_escape_string($_POST['id'])."'"; $result = mysql_query($sql) or die(mysql_error()); print("Product Added"); } else { $result = mysql_query("SELECT * FROM productimages WHERE id = '$id'"); while ($row=mysql_fetch_array($result)) { $id = $row[id]; $uptiff = $row[uptiff]; $upjpg = $row[upjpg]; $uppng = $row[uppng]; $chungshi = $row[chungshi]; $stretchwalker = $row[stretchwalker]; $akaishi = $row[akaishi]; $bellamargiano = $row[bellamargiano]; $mbt = $row[mbt]; $upthumb = $row[upthumb]; } print (" <form method=post action=productimages2.php>Product Title:
<input type=text name=title size=60>

Choose Categories that this story is relevant to:
<input type=checkbox name=chungshi value=1> Chung Shi
<input type=checkbox name=stretchwalker value=1> Stretchwalker
<input type=checkbox name=akaishi value=1> Akaishi
<input type=checkbox name=bellamargiano value=1> Bellamargiano
<input type=checkbox name=mbt value=1> MBT

<table width=500 cellpadding=0 cellspacing=0> <tr><td colspan=2 class=top><strong>Images</strong></td></tr> <tr><td>Upload JPG</td><td>
<input type=file name=upjpg></td></tr><tr><td colspan=2 class=top> </td></tr><tr><td>Upload TIFF</td><td>
<input type=file name=uptiff> </td></tr><tr><td colspan=2 class=top> </td></tr><tr><td>Upload PNG</td><td>
<input type=file name=uppng> </td></tr><tr><td colspan=2 class=top> </td></tr><tr><td>Upload Thumbnail</td><td>
<input type=file name=upthumb> </td></tr></table>
<input type=submit name=submit value=submit>

</form> "); } ?>

Here is the sql connection:

Line number On/Off | Expand/Contract<?php$con = mysql_connect("localhost", "user", "pass");if (!$con) { die('Could not connect: ' . mysql_error()); }mysql_select_db("database", $con);$sql = "insert into productimages ('".mysql_real_escape_string($_POST['title'])."', '".mysql_real_escape_string($_POST['chungshi'])."', '".mysql_real_escape_string($_POST['stretchwalker'])."', '".mysql_real_escape_string($_POST['akaishi'])."', '".mysql_real_escape_string($_POST['bellamargiano'])."', '".mysql_real_escape_string($_POST['mbt'])."', '".mysql_real_escape_string($_POST['upjpg'])."', '".mysql_real_escape_string($_POST['uptiff'])."', '".mysql_real_escape_string($_POST['uppng'])."', '".mysql_real_escape_string($_POST['upthumb'])."')";mysql_query($sql) or die(mysql_error()." <br /> $sql"); echo "The following information was entered into the database


";echo "<b>Title:</b>&nbsp;$_POST[title]
"; echo "Thanks for taking the time to submit your information."; mysql_close($con); ?>

And here is the error I'm getting:

Quote:You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''asdfasdf', '', '', '', '1', '', '', '', '', '')' at line 1
insert into productimages ('asdfasdf', '', '', '', '1', '', '', '', '', '')

No comments posted yet

Your Answer:

Login to answer
296 Like 11 Dislike
Previous forums Next forums
Other forums

Help with some dates
I have a list of dates in an array:

$mondays = array(
strtotime("October 12, 2009

Handling text changed in text box control using Ajax
I need to create a web form with a text box control. When someone types text into the textbox I nee

Pass sql into pl/sql and create RMAN duplicate script.
Hi,

I'm new to pl/sql and I'm trying to write a script that will generate some RMAN comma

regex for quoted text within a string
I am still getting the hang of regex expressions, but I cant seem to figure out how I would escape q

Need help with a mail notify function
I was tasked with setting up a site that's been prewritten. The site is basically a form that captur

How to load mysql (and other) extensions into PHP
How to load mysql (and other) extensions into PHP PHP Development forum discussing coding practices,

using variables in another page
I have a test database set up on localhost. I have a form that I can type a name into, hit the butto

MFC GUI Programming
I am working on a project right now that requires me to create a MFC Windows GUI. Basically it need

Regarding accessing SQL query issued by any user in Oracle 10g
Hi all,
i want to know the queries issued by various users accessing a database...

help finding hacking loopholes
i was attacked by a redirect php injection

my pc is clean of viruses

so i figure that

Sign up to write
Sign up now if you have flare of writing..
Login   |   Register
Follow Us
Indyaspeak @ Facebook Indyaspeak @ Twitter Indyaspeak @ Pinterest RSS



 
© indyaspeak.com. All Rights Reserved.
Play Free Quiz and Win Cash