作者ray02825 (面包)
看板PHP
标题[请益]用表单查询mysql资料库该怎麽做
时间Sat Dec 16 22:13:43 2006
这是我写的程式码
<html>
<head>
</head>
<title>资料新增(PHP+MySQL)</title>
<script language = JavaScript>
function data_submit(arg)
{
document.form1.work_flag.value=arg;
document.form1.submit();
}
</script>
<body>
<form name='form1' action='94610019.php' method='POST' target='_blank'>
<input type='hidden' name='work_flag'>
学号:<input type='text' name=stdno><br>
姓名:<input type='text' name=name><br>
地址:<input type='text' name=address><br>
生日:<input type='text' name=birthday><br>
学分:<input type='text' name=totalcredit><br><br>
<input type='button' value='资料查询' onclick=data_submit(1);>
<input type='button' value='资料新增' onclick=data_submit(2);>
<input type='button' value='资料修改' onclick=data_submit(3);>
<input type='button' value='资料删除' onclick=data_submit(4);>
<input type='button' value='资料一览' onclick=data_submit(5);>
<input type='reset' value='重新填写'>
</form>
</body>
这是关於html的程式
下面为php的程式
<?
$link = mysqli_connect("localhost","root","1234","school") or die("无法开启MySQL资料库连结!<br>");
mysqli_query($link, 'SET CHARACTER SET big5');
mysqli_query($link,"SET collation_connection = 'big5_chinese_ci'");
if($_POST['work_flag']==1)
{
$sql="select * from students where stdno = '" . $_POST['stdno'] . "'";
$result = mysqli_query($link, $sql);
mysqli_close($link);
}
if($_POST['work_flag']==2)
{
$sql="insert into students values ('" . $_POST['stdno'] . "','" . $_POST['name'] . "','" . $_POST['address']. "','" . $_POST['birthday'] ."','" . $_POST['totalcredit'] ."')";
if ( $result = mysqli_query($link, $sql) )
{
$msg= "资料新增成功!\\r\\r影响记录数: ". mysqli_affected_rows($link) . "笔";
}
else $msg= "资料新增失败!\\r\\r错误代码:" . mysqli_errno($link) . "\\r\\r错误讯息:" .mysqli_error($link) ;
mysqli_close($link);
echo "<script>alert(\"$msg\");window.close();</script>";
}
if($_POST['work_flag']==3)
{
$sql="update students set name='" . $_POST['name'] . "',address='" . $_POST['address']. "',birthday='" . $_POST['birthday'] ."',totalcredit='" . $_POST['totalcredit'] ."' where stdno = '" . $_POST['stdno'] . "'";
if ( $result = mysqli_query($link, $sql) )
{
$msg= "资料修改成功!\\r\\r影响记录数: ". mysqli_affected_rows($link) . "笔";
}
else $msg= "资料修改失败!\\r\\r错误代码:" . mysqli_errno($link) . "\\r\\r错误讯息:" .mysqli_error($link) ;
mysqli_close($link);
echo "<script>alert(\"$msg\");window.close();</script>";
}
if($_POST['work_flag']==4)
{
$sql="delete from students where stdno='" . $_POST['stdno'] . "'";
if ( $result = mysqli_query($link, $sql) )
{
$msg= "资料删除成功!\\r\\r影响记录数: ". mysqli_affected_rows($link) . "笔";
}
else $msg= "资料删除失败!\\r\\r错误代码:" . mysqli_errno($link) . "\\r\\r错误讯息:" .mysqli_error($link) ;
mysqli_close($link);
echo "<script>alert(\"$msg\");window.close();</script>";
}
if($_POST['work_flag']==5)
{
$sql="select * from students";
$result = mysqli_query($link, $sql);
mysqli_close($link);
}
?>
请问我在查询功能与资料一览的功能上该在哪里作修改
因为我看到的页面是一片空白
拜托各位高手了谢谢
--
※ 发信站: 批踢踢实业坊(ptt.cc)
◆ From: 218.162.178.78
1F:推 johnney:秀资料的程式码呢? 12/16 23:23
2F:推 buganini:小心SQL injection 12/17 21:29
3F:推 ray02825:谢谢我知道该怎麽改了 12/19 03:28