<?php
$menu_name = mysql_prep($_POST['menu_name']);
$position = mysql_prep($_POST['position']);
$visible = mysql_prep($_POST['visible']);
?>
<?php
$query = "INSERT INTO subjects (
menu_name, position, visible
) VALUES (
'{$menu_name}', {$position}, {$visible}
)";
$result = mysql_query($query, $connection);
if ($result){
//Success;
header("Location: content.php");
exit;
}
else{
//Display error message
echo "<p>Subject creation failed </p>";
echo "<p>" .mysql_error() . "</p>";
}
?>
Kad se ovaj kod izvrsi(preko submit dugmeta) daje mi gresku
Subject creation failed
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ' )' at line 4
Negde u SQL sintaksi imam gresku samo ja nju ne vidim, ako neko vidi nek mi javi. Greska se javlja samo ako pokusam da izvrsim insert preko php-a, a ako pokusam preko phpmyadmin-a
sve radi ok.
<?php
function mysql_prep($value)
{
$magic_quotes_active = get_magic_quotes_gpc();
$new_enough_php = function_exists("mysql_real_escape_string"); //i.e PHP >= 4.3.0
if($new_enough_php)
{ // PHP 4.3.0 or higher
//undo any magic quotes so mysql_real_escapre_string can do the work
if($magic_quotes_active) { $value = stripslashes($value); }
$value = mysql_real_escape_string($value);
}
else
{ //before PHP 4.3.0
// if magic quotes aren't already on then add slashes manually
if (!$magic_quotes_active)
{
$value = addslashes($value);
}
return $value;
}
?>
}
Konekcija na MySql radi ok, posto mogu da povucem podatke iz baze i prikazem ih na content.php
http://on.wsj.com/H9yjz6 -- India Graduates Millions, but Too Few Are Fit to Hire