PHP form data is written into MySQL code, and PHP form is written into mysql

PHP form data is written into MySQL code, and PHP form is written into mysql_PHP tutorial

WBOY

Release： 2016-07-12 08:51:28

Original

878 people have browsed it

PHP form data is written into MySQL code, and PHP form is written into mysql

<h1>插入操作</h1>  
<?<span>php  
    </span><span>if</span>(!<span>isset</span>(<span>$_POST</span>['submit'<span>])){  
        </span><span>//</span><span>如果没有表单提交，显示一个表单  </span>
?>  
    <form action="" method="post"><span>  
    国家：</span><input type="text" name="country" /><span>  
    动物名称（英文）：</span><input type="text" name="animal" /><span>  
    动物名称（中文）：</span><input type="text" name="cname" />  
    <input type="submit" name="submit" value="提交表单" />  
    </form>  
<?<span>php  
    }  
    </span><span>else</span><span>  
    {  
        </span><span>//</span><span>如果提交了表单  
        //数据库连接参数  </span>
        <span>$host</span> = "localhost"<span>;  
        </span><span>$user</span> = "root"<span>;  
        </span><span>$pass</span> = "zq19890319"<span>;  
        </span><span>$db</span> = "phpdev"<span>;  
         
        </span><span>//</span><span> 何问起 hovertree.com
        //取得表单中的值，检查表单中的值是否符合标准，并做适当转义，防止SQL注入  </span>
        <span>$country</span> = <span>empty</span>(<span>$_POST</span>['country'])? <span>die</span>("请输入国家名称"):  
        <span>mysql_escape_string</span>(<span>$_POST</span>['country'<span>]);  
        </span><span>$animal</span> = <span>empty</span>(<span>$_POST</span>['animal'])? <span>die</span>("请输入英文名"):  
        <span>mysql_escape_string</span>(<span>$_POST</span>['animal'<span>]);  
        </span><span>$cname</span> = <span>empty</span>(<span>$_POST</span>['cname'])? <span>die</span>("请输入中文名"):  
        <span>mysql_escape_string</span>(<span>$_POST</span>['cname'<span>]);  
          
        </span><span>//</span><span>打开数据库连接  </span>
        <span>$connection</span> = <span>mysql_connect</span>(<span>$host</span>, <span>$user</span>, <span>$pass</span>) or <span>die</span>("Unable to connect!"<span>);  
          
        </span><span>//</span><span>选择数据库  </span>
        <span>mysql_select_db</span>(<span>$db</span>) or <span>die</span>("Unable to select database!"<span>);  
          
        </span><span>//</span><span>构造一个SQL查询  </span>
        <span>$query</span> = "INSERT INTO symbols(country, animal, cname) VALUE('<span>$country</span>', '<span>$animal</span>', '<span>$cname</span>')"<span>;  
          
        </span><span>//</span><span>执行该查询  </span>
        <span>$result</span> = <span>mysql_query</span>(<span>$query</span>) or <span>die</span>("Error in query: <span>$query</span>. ".<span>mysql_error</span><span>());  
          
        </span><span>//</span><span>插入操作成功后，显示插入记录的记录号  </span>
        <span>echo</span> "记录已经插入， mysql_insert_id() = ".<span>mysql_insert_id</span><span>();  
          
        </span><span>//</span><span>关闭当前数据库连接  </span>
        <span>mysql_close</span>(<span>$connection</span><span>);  
    }  
</span>?>

Copy after login

Reference: http://www.cnblogs.com/roucheng/p/phpmysql.html

The above code uses different formats, I don’t know which format is better

Insert operation
if(!isset($_POST['submit' ])){
//If no form is submitted, display a form
?>
"" method="post">
Country: "text" name="country" />
Animal name (English): "text" name="animal" />
Animal name (Chinese): "text" name="cname" />
"submit" name="submit" value="submit Form" />
}
else
{
//If the form is submitted
//Database connection parameters
$host = "localhost";
$user = "root";
$pass = "zq19890319";
$db = "phpdev";
//Get the value in the form, check whether the value in the form meets the standards, and escape it appropriately to prevent SQL injection
$country = empty($_POST[ 'country'])? die("Please enter the country name"):
mysql_escape_string($_POST['country']);
$animal = empty($_POST[ 'animal'])? die("Please enter your English name"):
mysql_escape_string($_POST['animal']);
$cname = empty($_POST[ 'cname'])? die("Please enter your Chinese name"):
mysql_escape_string($_POST['cname']);
//Open the database connection hovertree.com He asked
$connection = mysql_connect($host, $user, $pass) or die("Unable to connect!");
//Select database
mysql_select_db($db) or die( "Unable to select database!");
//Construct a SQL query
$query = "INSERT INTO symbols(country, animal, cname) VALUE('$country', '$animal', '$cname ')";
//Execute the query
$result = mysql_query($query) or die("Error in query: $query. ".mysql_error());
//After the insertion operation is successful, the record number of the inserted record is displayed
echo "The record has been inserted, mysql_insert_id() = ".mysql_insert_id();
//Close the current database connection
mysql_close($connection);
}
?>

PHP form data is written into MySQL code, and PHP form is written into mysql_PHP tutorial

PHP form data is written into MySQL code, and PHP form is written into mysql

Insert operation