Featured post

c# - Usage of Server Side Controls in MVC Frame work -

-
i using asp.net 4.0 , mvc 2.0 web application. project requiremrnt have use server side control in application not possibl in noraml case. ideally want use adrotator control , datalist control. i saw few samples , references in codepleax mvc controllib howwver found less useful. can tell how utilize theese controls in asp.net application along mvc. note: please provide functionalities related adrotator , datalist controls not equivalent functionalities thanks in advace. mvc pages not use normal .net solution makes use of normal .net components impossible. a normal .net page use event driven solution call different methods service side mvc use actions , view completly different way handle things. also, mvc not use viewstate normal .net controlls require. found article discussing mixing of normal .net , mvc.
3 comments

HTML form - PHP not inserting into Database correctly -

-

i'm tring make form work. similar fillin now: question, text, tags.

fine,

this when print form

function imprimir_formulario_pregunta(){      $html = '<form id="pregunta" name ="pregunta" method="post" action="preguntas.php">';     $html .= '<h2>pregunta</h2>';      $html .= '<input name="q" id="q" type="text" value=" "></input>';     $html .= '<h2>explica tu duda</h2>';     $html .= '<textarea name="texto" id="texto" /                     ></textarea>';     $html .= '<h2>etiquetas (separadas por comas)</h2>';     $html .= '<input name="tags" id="tags"/>';     $html .= '<input name="responde_a" style="display:none;" id="responde_a" value="0"/>';       $html .= '<button name="pregunta" id="pregunta" type="submit" >publicar</button>';      $html .= '</form>';      echo $html;  }

this when recive data

if(isset($_post['pregunta'])){     $p_title = $_post['q'];     $p_text = $_post['texto'];     $p_et = $_post['etiquetas'];     $p_resp = $_post['responde_a'];     post_pregunta($p_title,$p_text, $p_et, $p_resp);

this when process data

function obtener_id_pregunta($p,$t){     $consulta = mysql_query("select * preguntas pregunta='$p' && texto='$t'");     while($item = mysql_fetch_array($consulta)){         return $item['id'];     } }  function    post_pregunta($a,$t,$et,$r){     mostrar_notificacion("hemos entrado");     //// ******     if($a != '' && $t != ''){         $b = $a;         guardar_pregunta($b,$t,$r);         $id = obtener_id_pregunta($b,$t);         $temp = new etiqueta(0, '');         $basura = $temp->guardar_etiquetas($et, $id, $_session['id']);        }else         mostrar_notificacion("hemos salido $a $t"); }  function guardar_pregunta($p,$t,$r){     $id_tmp = $_session['id'];     $insert = "insert preguntas (pregunta,texto,id_usuario,fecha,responde_a) values ('$p','$t','$id_tmp',now(),'$r')";     $qry = mysql_query($insert);     if(mysql_affected_rows())     {         mostrar_notificacion("la pregunta $p ($t)($r) se guardo");         return true;     }     else     {         mostrar_notificacion("error ingresando datos");         return false;     }     return false; }

result:

i insert in database done, 'q' field has '' value....

notes: looses value in step ** because enters in condition, doesn't in next 1 wich same question...

please tell me have answer, been long on this.. , need done week class

thanks in advance

it's hard see what's going on - @vincebowdren says, need debug every step of way.

however, more worryingly you're using $_post data directly in sql query - this sql injection attack waiting happen.

ensure wrap all such variables in mysql_real_escape_string function within queries.

e.g.:

 $insert = "insert preguntas (pregunta,texto,id_usuario,fecha,responde_a) values ('".mysql_real_escape_string($p)."','".mysql_real_escape_string($t)."','$id_tmp',now(),'".mysql_real_escape_string($r)."')";

see how can prevent sql injection in php? more information.


Comments

Post a Comment

Popular posts from this blog

c# - Usage of Server Side Controls in MVC Frame work -

-
i using asp.net 4.0 , mvc 2.0 web application. project requiremrnt have use server side control in application not possibl in noraml case. ideally want use adrotator control , datalist control. i saw few samples , references in codepleax mvc controllib howwver found less useful. can tell how utilize theese controls in asp.net application along mvc. note: please provide functionalities related adrotator , datalist controls not equivalent functionalities thanks in advace. mvc pages not use normal .net solution makes use of normal .net components impossible. a normal .net page use event driven solution call different methods service side mvc use actions , view completly different way handle things. also, mvc not use viewstate normal .net controlls require. found article discussing mixing of normal .net , mvc.
Read more

ios - Very simple iPhone App crashes on UILabel settext -

-
i have simple application. have button , label in ib. have ibaction onclick calls settext on label. there's outlet label. connected in ib. crashes app first time in simulator. when launch again, sets text. crashes again next time. crashes on actual device. should simple, i'm not sure i'm doing wrong. thanks. in .h file : #import <uikit/uikit.h> @interface untitledviewcontroller : uiviewcontroller { iboutlet uilabel *label; iboutlet uibutton *button; } @property (nonatomic, retain) uilabel *label; -(ibaction) onclick1: (id) sender; @end and in .m: - (ibaction) onclick1: (id) sender { //[label settext:@"hello world!"]; label.text = @"hello world!"; //[button settitle:@"clicked" forstate:uicontrolstatenormal]; } sorry, i'm new site. how crash log , stack? thanks. edit : while answer technically correct, doesn't answer question @ :( sorry < warning - guess > if you're...
Read more

mysql - Why there can be only one TIMESTAMP column with CURRENT_TIMESTAMP in DEFAULT clause? -

-
why there can 1 timestamp column current_timestamp in default or on update clause? create table `foo` ( `productid` int(10) unsigned not null, `addeddate` timestamp not null default current_timestamp, `updateddate` timestamp not null default current_timestamp on update current_timestamp ) engine=innodb; the error results: error code : 1293 incorrect table definition; there can 1 timestamp column current_timestamp in default or on update clause this limitation, due historical, code legacy reasons, has been lifted in recent versions of mysql: changes in mysql 5.6.5 (2012-04-10, milestone 8) previously, @ 1 timestamp column per table automatically initialized or updated current date , time. restriction has been lifted. timestamp column definition can have combination of default current_timestamp , on update current_timestamp clauses. in addition, these clauses can used datetime column definitions. more information, see automati...
Read more