Menu
Community /Pin to ProfileBookmark
@NogDogJun 26.2010 — #Regarding SQL injection, see the [url=http://php.net/mysql_real_escape_string]mysql_real_escape_string() manual page[/url] , and for more info: http://www.nyphp.org/PHundamentals/5_Storing-Data-Submitted-Form-Displaying-Database . And for a quick illustration as to why: http://xkcd.com/327/ .
php delete file not deleting from SQL table
here is the code:
<?php
$Link = @mysql_connect(‘mydata’, ‘mydata’, ‘mydata’);
if (!$Link) {
exit(‘<p>Unable to connect to the ‘ .
‘database server at this time.</p>’);
}
if (!@mysql_select_db(‘mydata’)) {
exit(‘<p>Unable to locate the PartyCo ‘ .
‘database at this time.</p>’);
}
// delete joke part
$party = $GET_[‘party’];
$ok = @mysql_query(
“DELETE FROM christmas WHERE party=’$party'”);
if ($ok) {
echo ‘<p>Party deleted successfully!.</p>’;
} else {
echo ‘<p>Error deleting party details: ‘ .
mysql_error() . ‘</p>’;
}
?>
this script runs without error – but doesnt delete the data in the christmas table –
this is the link that sends to the delete.php page:
“<a href=’deleteparty.php?party=$party’>Delete</a></p>”;
which isnt the problem, as I have an edit.php file wchich uses the same logic and this works fine……
any suggestion to my DELETE command ?
thanks in advance!
Sign in
to post a comment3 Comments(s) ↴
0
@NogDogJun 26.2010 — #Regarding SQL injection, see the