所以我在将数据插入数据库时遇到问题。我当前遇到的错误是“未选择数据库”错误,但我看不出问题出在哪里。我的代码是:
<?php
$con=mysqli_connect("localhost","root","","db_test");
// Check connection
if (mysqli_connect_errno())
{
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
$firstname=$_POST['firstnameReg'];
$surname=$_POST['surnameReg'];
$mypassword=$_POST['passwordReg'];
$email=$_POST['emailReg'];
$result= mysql_query("INSERT INTO tbl_customers (firstname, lastname, email, password) VALUES ('$firstname', '$surname', '$email', '$mypassword'");
echo "$firstname", "$surname", "$mypassword", "$email";
if($result)
{
echo "Success!";
}
else
{
die(mysql_error());
}
mysqli_close($con);
?>
你能看到任何错误吗?我知道它没有针对 SQL 注入(inject)的保护,它只是一个测试项目。谢谢。
最佳答案
您应该使用 mysqli_query,而不是来自错误库的mysql_query
$result= mysql_query("INSERT INTO tbl_customers (firstname, lastname, email, password) VALUES ('$firstname', '$surname', '$email', '$mypassword'");
因此,在您的情况下,您还缺少 VALUES 中的右括号:
$result = mysqli_query($con, "INSERT INTO tbl_customers (firstname, lastname, email, password) VALUES ('$firstname', '$surname', '$email', '$mypassword')");
趁此机会,您还应该实现准备好的语句以避免 SQL 注入(inject):
$sql = "INSERT INTO tbl_customers (firstname, lastname, email, password) VALUES (?, ?, ?, ?)";
if (!$insert = $con->prepare($sql))
die('Query failed: (' . $con->errno . ') ' . $con->error);
if (!$insert->bind_param('ssss', $firstname, $surname, $email, $mypassword))
die('Binding parameters failed: (' . $insert->errno . ') ' . $insert->error);
if (!$insert->execute())
die('Execute failed: (' . $insert->errno . ') ' . $insert->error);
else
echo "Success!";
mysqli_close($con);
关于php - "No database selected",我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/18178117/