Wrox Programmer Forums

Need to download code?

View our list of code downloads.

Go Back   Wrox Programmer Forums > PHP/MySQL > Beginning PHP
Password Reminder
Register
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read
Beginning PHP Beginning-level PHP discussions. More advanced coders should post to the Pro PHP forum.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the Beginning PHP section of the Wrox Programmer to Programmer discussions. This is a community of tens of thousands of software programmers and website developers including Wrox book authors and readers. As a guest, you can read any forum posting. By joining today you can post your own programming questions, respond to other developers’ questions, and eliminate the ads that are displayed to guests. Registration is fast, simple and absolutely free .
DRM-free e-books 300x50
Reply
 
Thread Tools Search this Thread Display Modes
  #11 (permalink)  
Old August 22nd, 2003, 01:11 PM
Friend of Wrox
Points: 2,570, Level: 21
Points: 2,570, Level: 21 Points: 2,570, Level: 21 Points: 2,570, Level: 21
Activity: 0%
Activity: 0% Activity: 0% Activity: 0%
 
Join Date: Jun 2003
Location: San Diego, CA, USA
Posts: 836
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Okay, is this a typo in your script or just in the message you posted?

Quote:
quote:Originally posted by a5xo3z1
..and that's mine
Code:
INSERT INTO sqlserverscript ( `id`,`category`, `description`, `explanation', `scripttext`) 
VALUES 
( '', '2', 'Skript, um eine Datenbank zu korrumpieren', NULL, 'sp_configure allow, 1 go reconfigure with override
go update sysindexes set FirstIAM = 1234
where id = OBJECT_ID(\'roysched\')go
sp_configure allow, 0 go reconfigure with override go');

If you look closely, you'll see that "explanation" is followed by a single quote, not a backtick.

That'll prevent your query from executing, though, as it's a parse error. If the row is being inserted, I don't think that you have a single-quote in the query you're trying to run.

Again, I think the easiest way for us to help you is not to describe what you think the problem is, but to post your code and let us find the problem that's really there. Too often, the two are not the same.

Take a schema dump of your table and post it along with the PHP code that generates and executes your query if you're still having problems.


Take care,

Nik
http://www.bigaction.org/
Reply With Quote
  #12 (permalink)  
Old August 25th, 2003, 12:22 AM
Authorized User
 
Join Date: Jun 2003
Location: , , Germany.
Posts: 26
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Hi there,

ok, I wasn't able to figure out what's wrong so here goes the whole code.

Script 1 (the Entry form)
Code:
<?php
include('is_include.php');
?>
<html>
<?php
WriteHeaderFromScript("InsideSQL :: Add Skript");
?>

    <body>

    <?php
    WriteTopFromScript();
    ?>

    <form action="f_script_entry_process.php" method="POST">
      <div align="left">
          <table>
              <tr>
                  <td>
                  Kategorie
                  </td>
                  <td>
                <input type="text" name="name_of_category" value="" size="10" maxchars="10">
                </td>
            </tr>
            <tr>
                  <td>
                  Beschreibung
                  </td>
                  <td>
                <input type="text" name="description" value="" size="100" maxchars="2000">
                </td>
            </tr>
            <tr>
                  <td>
                  Skripttext
                  </td>
                  <td>
                <textarea name ="script_text" cols="100" rows="10">
                </textarea>
                </td>
            </tr>
        </table>
        <br>
        <table>
            <tr>
                <td>
                <input type="Submit" name="Action" value="Abschicken" size="20" maxchars="20">
                </td>
                <td>
                <input type="Reset" name="Action" value="Reset" size="20" maxchars="20">
                </td>
            </tr>
        </table>
    </div>
    </form>
    </body>
</html>
Script 2 (the Process script)
Code:
<?php
include('is_db.php');

$category = $_POST['name_of_category'];
$desc = $_POST['description'];
$sc_text = addslashes($_POST['script_text']);

ConnectMySQLDB();
$sql = "INSERT INTO sqlserverscript (
    `id`,`category`, `description`, `explanation`, `scripttext`) VALUES (
     '', '$category', '$desc', NULL, '$sc_text');"; 

$result=mysql_query($sql);
/*header('Location:f_script_entry.php')*/
?>
and here's the CREATE TABLE statement from PhpMyAdmin
Code:
#
# Tabellenstruktur für Tabelle `sqlserverscript`
#

CREATE TABLE sqlserverscript (
  id int(3) unsigned NOT NULL auto_increment,
  category tinyint(3) unsigned default NULL,
  description varchar(255) default NULL,
  explanation text,
  scripttext text,
  PRIMARY KEY  (id),
  UNIQUE KEY IX_DESCRIPTION (description)
) TYPE=MyISAM;


Cheers,
Frank
Reply With Quote
  #13 (permalink)  
Old August 25th, 2003, 12:23 AM
Authorized User
 
Join Date: Jun 2003
Location: , , Germany.
Posts: 26
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Hi Nik,
Quote:
quote:Originally posted by nikolai
 Okay, is this a typo in your script or just in the message you posted?
it was indeed a typo, but didnt' change anything

Cheers,
Frank
Reply With Quote
  #14 (permalink)  
Old October 2nd, 2008, 01:22 PM
Registered User
 
Join Date: Oct 2008
Location: , , .
Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Hi... did you ever figure this out? I have the exact same problem and I'm pulling my hair.

Thanks

Nelson

Reply With Quote
  #15 (permalink)  
Old October 2nd, 2008, 01:47 PM
Friend of Wrox
 
Join Date: Jun 2008
Location: Snohomish, WA, USA
Posts: 1,649
Thanks: 3
Thanked 141 Times in 140 Posts
Default

It's because he had apostrophes in the data he was inserting.

He needed to *DOUBLE* each apostrophe.

He tried changing apostrophe to \' and that would be needed *IF* you had the text in the PHP code. But when doing

$sql = "INSERT INTO sqlserverfaq (
    category, dt_question, eng_question, answer) VALUES(
    '$category', '$dt_question', '$eng_question', '$ratio')"

the apostrophes inside the $xxx values are *NOT* seen by PHP. However, they *are* seen by SQL. Example:
    $sql = "INSERT INTO table ( whatever ) VALUES( '$something' )"
if the form field for $something contained
    it's a boy
then that query, *to SQL*, becomes
    INSERT INTO table ( whatever ) VALUES( 'it's a boy' )

SQL requires that you escape an embedded apostophe with a *pair* of apostrophes--NOT with \'--so you need to do a REPLACE on each apostrophe with a pair of them.

I'm not a PHP person; in Java, you'd do something like
    $something = $something.replace("\'", "''");
so do the equivalent in PHP.

It's a shame he was misled by all the bogus answers back then.
Reply With Quote
Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
change content of textarea from select darkhalf Javascript 1 April 26th, 2007 06:03 AM
Insert Excel sheet content into Access table from stepdev Access VBA 2 December 8th, 2006 04:18 PM
Displaying textarea content to html table keithc Pro PHP 2 December 1st, 2006 03:12 AM
How to insert text into panel with out textarea JOptionPane Java GUI 5 May 6th, 2005 03:35 PM



All times are GMT -4. The time now is 06:20 AM.


Powered by vBulletin®
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
© 2013 John Wiley & Sons, Inc.