PHP - Php And Mysql - Data Retrieval/input

When I use PHP to gain data from another webpage I usually use
file_get_contents

Is there a faster way to retrieve data from webpages faster since it only seems to do around 200 website line retrievals per minute?

Is cURL faster?
Thank you

I'm going bananas with one of those issues where it looks like everything is right but the code won't work.  I've included a script below that fetches data from a database and creates a drop down menu.  I'm trying to use a field called "gone" and enter 'gone' in that field when I want to delete the row but be able to retrieve it by making the field empty.  There is something in the WHERE clause of my sql that is screwing things up.  I get nothing retrieved with any of the WHERE clauses below.  Interestingly, when I take the where clause out completely, I get the rows that have no 'gone' in them.

The code is below.  None of the following in the included code get me a result.  All of them return nothing.  I also don't get any errors. Just nothing.

WHERE gone != 'gone'

WHERE gone <> 'gone'

WHERE gone = ''

WHERE gone = 'gone'

Without the WHERE clause it runs fine.

As a work around I tried using

if($row['gone'] == 'gone')  { continue;}

In the while.. function at the end of the file to bypass rows with 'gone' in the field.  It also stopped the script.

Here's my code:

<?php // person_selectall.php

/** Create new pdo object */

require 'Db.php';

//$sql = "SELECT person_id, fname, lname FROM Persons";
$sql = "SELECT * FROM Persons WHERE gone = ''";

$stmt = $pdo->prepare($sql);
$stmt->execute();

echo "<p><select class=\"select-field\" name=\"person_id\" >\n";

while ($row = $stmt->fetch()) {  
    
    $name = $row['fname'] . ' ' . $row['lname'];
    echo "<option value=\"" . $row['person_id'] . "\">" . $name . "</option>\n";
    
    }
    
echo "</select>";

?>

 

This topic has been moved to MySQL Help.

http://www.phpfreaks.com/forums/index.php?topic=358972.0

Hello to all,

I have problem figuring out how to properly display data fetched from MySQL database in a HTML table.

In the below example I am using two while loops, where the second one is nested inside first one, that check two different expressions fetching data from tables found in a MySQL database. The second expression compares the two tables IDs and after their match it displays the email of the account holder in each column in the HTML table.

The main problem is that the 'email' row is displayed properly while its while expression is not nested and alone(meaning the other data is omitted or commented out), but either nested or neighbored to the first while loop, it is displayed horizontally and the other data ('validity', 'valid_from', 'valid_to') is not displayed.'

Can someone help me on this, I guess the problem lies in the while loop?
Here is part of the HTML code:

<thead>
 <tr>
 <th data-column-id="id" data-type="numeric">ID</th>
 <th data-column-id="email">Subscriber's Email</th>
 <th data-column-id="validity">Validity</th>
<th data-column-id="valid_from">Valid From</th>
 <th data-column-id="valid_to">Valid To</th>
</tr>
</thead>

Here is part of the PHP code:

 

    <?php
    while($row = $stmt->fetch(PDO::FETCH_ASSOC))
    {
        echo '
            <tr>
                <td>'.$row["id"].'</td>
        ';
        while ($row1 = $stmt1->fetch(PDO::FETCH_ASSOC)) {
        echo '
                <td>'.$row1["email"].'</td>
        ';
        }
        if($row["validity"] == 1) {
            echo '<td>'.$row["validity"].' month</td>';
        }else{
            echo '<td>'.$row["validity"].' months</td>';
        }
        echo '  <td>'.$row["valid_from"].'</td>
                <td>'.$row["valid_to"].'</td>
        </tr>';
    }
    ?>

P.S. Please know that I have purposely omitted the connection part and the methods in the class that are used in this code to keep the spot of the problem as clean as possible. If you need me to rephrase the question, please ask.

Thank you.

This could be PHP or MySql so putting it in PHP forum for now...
I have code below (last code listed) which processes a dynamically created Form which could have anywhere from 0 to 6 fields.  So I clean all fields whether they were posted or not and then I update the mySQL table.

The problem with this code below is that if, say, $cextra was not posted (i.e. it wasnt on the dynamically created form), then this code would enter a blank into the table for $cextra (i.e. if there was already a value in the table for $cextra, it gets overwritten, which is bad).

What is the best way to handle this?  I'm thinking i have to break my SQL query into a bunch of if/else statements like this...

Code: [Select]
$sql = "UPDATE cluesanswers SET ";
if (isset($_POST['ctext'])){
echo "ctext='$ctext',";
} else {
//do nothing
}
and so on 5 more times....

That seems horribly hackish/inefficient.  Is there a better way?

Code: [Select]
if (isset($_POST['hidden']) && $_POST['hidden'] == "edit") {

$cimage=trim(mysql_prep($_POST['cimage']));
$ctext=trim(mysql_prep($_POST['ctext']));
$cextra=trim(mysql_prep($_POST['cextra']));
$atext=trim(mysql_prep($_POST['atext']));
$aextra=trim(mysql_prep($_POST['aextra']));
$aimage=trim(mysql_prep($_POST['aimage']));


//update the answer edits
$sql = "UPDATE cluesanswers SET ctext='$ctext', cextra='$cextra', cimage='$cimage', atext='$atext', aextra='$aextra', aimage='$aimage'";
$result = mysql_query($sql, $connection);
if (!$result) {
die("Database query failed: " . mysql_error());
} else {
}

Hi I am trying to select and order data/numbers from a colum in a mysql data base however i run the code and it returns no value just a blank page no errors or any thing so i think the code is working right but then it returns no result? Please help thanks

Here is the code:

<?php
$host= "XXXXXX";
$mysql_user = "XXXXXX";
$mysql_password = "XXXXXX";
$mysql_database = "XXXXXXX";

$connection = mysql_connect("$host","$mysql_user","$mysql_password") or die ("Unable to connect to MySQL server.");
mysql_select_db($mysql_database) or die ("Unable to select requested database.");

$row = mysql_fetch_assoc( mysql_query( "SELECT XP FROM Game ORDER BY number DESC LIMIT 1" ) );
$number = mysql_result(mysql_query("SELECT XP FROM Game ORDER BY number DESC LIMIT 1"), 0);

echo "The the highest XP is $number";

?>

hi guys, im new to this forum

I'm new also to php, I need help from you guys:

I want to display personal information from a certain person (the data is on the mysql database) using his name as a link:

example:
               (index.php)
               names
                          1. Bill Gates
                          2. Mr. nice Guy
           
i want to click Bill Gates
 
   (output.php)
     Name: Bill Gates
     Country:xxxx
     Age: xx   
                 etc.

How can i make this or how to learn this?
   
                 

             
               

   
       

At the moment I collect data from an .XML file and it gets inserted into a database and it works great however the way in which the .xml files work has changed and I need to update my script to accommodate,   before everything was processed by 1x .xml file and i collected data, now its done via 2x .xml files.   So here is my current script;

<?php 
// INCLUDE DB CONNECTION FILE
include("includes/connect.php");
 
// CHANGE THE VALUES HERE
include("includes/config.php");

// URL FOR XML DATA
$url = "https://api.eveonline.com/corp/StarbaseList.xml.aspx?keyID=".$keyID."&vCode=".$vCode."";

// RUN XML DATA READY FOR INSERT
$xml = simplexml_load_file($url);

// Loop Through Names
$insertValues = array();
$modifiedTS = date('Y-m-d h:i:s');
foreach ($xml->result->rowset[0] as $value)
{
        //Prepare the values
        $itemID = $value['itemID'];
        $typeID = mysql_real_escape_string($value['typeID']);
        $locationID = $value['locationID'];
        $moonID = $value['moonID'];
        $state = mysql_real_escape_string($value['state']);
        $stateTimestamp = mysql_real_escape_string($value['stateTimestamp']);
        $onlineTimestamp  = $value['onlineTimestamp'];
        $standingOwnerID = $value['standingOwnerID'];

//Create and run ONE INSERT statement (with UPDATE clause)
    $insert = "INSERT INTO `ecmt_poslist` (itemID,typeID,locationID,moonID,state,stateTimestamp,onlineTimestamp,standingOwnerID,last_modified) VALUES('$itemID','$typeID','$locationID','$moonID','$state','$stateTimestamp','$onlineTimestamp','$standingOwnerID','$modifiedTS') ON DUPLICATE KEY UPDATE 
state='$state',
stateTimestamp='$stateTimestamp',
onlineTimestamp='$onlineTimestamp',
last_modified = '$modifiedTS'";
						
mysql_query($insert) or die(mysql_error());


//ERROR CHECKING OPTION ONLY!
//echo $insert;
//echo "<br><br>";

};
//UPDATE last time this script ran and insert timestamp into Database 
$timeNow = date('Y-m-d H:i:s', strtotime('-1 hour'));
$insertTime = "UPDATE `ecmt_API` SET time=1, time='$timeNow'";
mysql_query($insertTime) or die(mysql_error());

//Run query to delete records that were not just inserted/updated
$delete = "DELETE FROM `ecmt_poslist` WHERE last_modified < '$modifiedTS'";
mysql_query($delete) or die(mysql_error());

?>

and here is the wiki page about the .xml file and its data;   http://wiki.eve-id.n...tarbaseList_XML   i now need it to collect more data from a 2nd .xml file but the url will include the $itemID of the items pulled by the above script;   http://wiki.eve-id.n...rbaseDetail_XML   now i guess i need to put the code in the above foreach loop so I can say for each $itemID gather data from the second .xml file and input into a seperate table in my database named: `ecmt_poslistdetails`   but i have no idea where to start as the rowset and layout of the 2nd .xml file is different, can anyone help me.. i'm not even sure if I wrote out this post to make sense from someone looking in from outside or not. its hard to explain.   but hopefully the links provided will help.   Ultimately I hope to have 2 tables in my database ecmt_poslist and ecmt_poslistdetails both containing the data from the above 2x .xml files.

Hi People.

I am trying to insert data from a form into my database.

Now I have the following code to connect to the DB to update a table so I know that I can connect to the DB ok

Code: [Select]
<?php 
// this code I got from the new boston, PHP tutorial 25 in selecting a mysql db
// opens connection to mysql server
$dbc = mysql_connect('localhost', 'VinnyG', 'thepassword');
if (!$dbc) {
die("Not Connected:" . mysql_error ());
}
// select database
$db_selected = mysql_select_db ("sitename",$dbc);
if(!$db_selected)
{
die("can not connect:" . mysql_error ());

}
// testing code

$query="UPDATE users SET username = 'testing testing' WHERE user_id = '2'";
$result=mysql_query($query);


?>

Now here is the code from my form.

Code: [Select]
</head>

<body>
<?php
//include "connection_file.php" 
//include "config01.php"

$username = "username";
$height_above = "height_above";
$mb_diff = "mb_diff";
$alternative = "alternative"; 

?>

<form name = 'form1' method = 'post' action='config01.php'>
<table width="700" border="1" cellspacing="5" cellpadding="5">
  <caption>
    Submit Your Airfield Details
  </caption>
  <tr>
    <td width="100">&nbsp;</td>
    <td width="200">Your Name</td>
    <td width="200"><input type='text' name='username' maxlength='30'></td>
    <td width="100">&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>Height Above MSL</td>
    <td><input type='text' name='height_above'maxlength= '30'></td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>Mb Difference</td>
    <td><input type='text' name='mb_diff'maxlength='40'></td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>Alternative Airfield</td>
    <td><input type='text' name='alternative' maxlength='30'></td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td><input type='submit' name='submit' value='post' /></td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
  </tr>
</table>
</form>
<?php
$sql01 = "INSERT INTO users SET user_id = '', username = '$username',height_above = '$height_above', mb_diff = $mb_diff, alternative = $alternative";
$result=mysql_query($sql01);
?>

</body>
</html>

here is the config01.php that the form refers to in the 'action' above.

Code: [Select]
<?php
$host = 'localhost';
$username = 'VinnyG';
$password = 'thepassword';
$db_name = 'sitename';

//connect to database
mysql_connect ("$host","$username","password")or die ("cannot connect to server");
mysql_select_db ("db_name") or die ("cannot select DB");

?>
Please could someone look at the above code and tell me where I'm going wrong.  I can connect to the DB and update using the top script but I can't submit the form for some reason.  I get a "cannot connect to server" message.

Please someone help.  It's been driving me crazy for the past two days.

Regards
VinceG
http://www.microlightforum.com

This has been bothering me for a while, how do I do this?


echo
("
    <form  method = 'get' action = 'member.php?action=Search&option=faction&name=NAME'>
                                        Faction's Name: <input type='text' name='member' /><br /><br />
                                        <input type='submit' value='Search' />
                                    </form>
");


name='member' is supposed to be sent with he member.php?action=Search&option=faction&name=NAME. Obviously replacing NAME with the input.

Hey Guys...I am trying to secure my php file and have been reading a lot regarding sql injection.

I still dont understand clearly how to prevent sql injection through numeric data input, since from what I understood mysql_real_escape_string() does nothing about it only prevents attacks on string input.

Here's an example:


if ($action == "checkId")
{
//retreive data from flash
$user_id=mysql_real_escape_string($_POST['Id']);


$result = mysql_query("SELECT user_id from users WHERE user_id = '$user_id'");
if (mysql_num_rows($result) > 0) 
{
echo "status1=exists";
} 
else 
{
echo "status1=id doesnt exist";
}
}


I would like to create a function like this:

foreach($_POST as $post)
{
$postvars[$key] = htmlentities($post); //XSS prevention
$postvars[$key] = mysql_real_escape_string($post); //Sql String Prevention
}

But then again...How do I check on the numeric POST's ? how do I validate them through this function?

Any suggestions and/or ideas?

Thanks a lot in advance!
Cheers.

I've been poking around online for about a day now trying to find a good way to do the following:

I have an "order" I'm reading in from a MySQL database (not completely relevant, but just fyi). And, for this order there are a number of "parts" (automotive parts) that have been ordered. For each part there is data pertaining to the quantity of parts that have been ordered and the number of parts that have been allocated (based on our inventory) and then a third column that has the number of parts still in that order that are still to be allocated at a future date.

Basically, I'm displaying this data in a form with each row having a checkbox to the far left. What I want to do is allow the user to check any number of check boxes. If a check box is checked the form should submit all of the input text boxes for that row (the user can update the quantities) that I talked about in the second paragraph for that "part" (each part is displayed in a row and has a checkbox).

Unfortunately, most of the examples I found for checkboxes in a form submit a specific value (like a number of a letter). I need the form to submit the values that are in the textboxes. So basically, I'm thinking I need the page to update a PHP object whenever the value of a textbox is changed and then when the user clicks a button it will send the php object for each checked row through GET or POST. But, how would I get it to onchange update a PHP object (the PHP object would need to be a 2-D array where the first index allows you to select the part and the second index allows you to select which quantity you will change). I'm thinking I would need to call a script from the onchange like: onchange="somePHPfunction(partNumberIndex, whichQuantityI'mChanging, currentValueOfThatQuantity)" but of course that would require me to embed some php inside the onchange call since the partNumberIndex and whichQuantity are PHP variables..

Any ideas on how to do this sort of thing?
Or any ideas on how to do this differently?
I'm trying to avoid javascript because it would place a javascript constraint on the users.
But, maybe there's no other way to do this sort of thing?

Any help would be greatly appreciated!

I have a problem where I am unable to display a DB entry that for exampe says "John Doe".

The code I am using is:

Code: [Select]
<tr>
<td>Agent Full Name:</td>
<td><input type="text" name="fullname" value='.$agentdata['fullname'].'></td>
</tr>
The output shows "John" instead of "John Doe", have I missed something here 

I have a 'subscribe' form on a website that uses Ajax to validate the input fields, the form is then processed via php. The actual html code resides on a Wordpress page.   I had actually just got the form to work again. The website was static, and I transferred everything over to Wordpress, and the form didnt work. I was able to get it working by specifying the url: in ajax, as an absolute path to my php form. Overnight, something, I'm not sure what, stopped the form from processing. No data is posted to myql, and no email is sent or received. The status message just hangs at "Please wait while we process your information..." This message is in part of my Ajax code, so I am thinking something is wrong with my php script. I have a 'contact' page that uses nearly identical code that the 'subscribe' pages uses to validate the input fields, and it works.   I was able to recover both the ajax and php script from an earlier time when they did work, I uploaded back to my server and nothing, the form still does not process. I also made sure my database credentials were correct with my host, and even tested my connection to mysql which I was able to connect. Next, I made sure I was able to send mail with my host.   I don't know what is causing the form to hang, and I would love to get this solved; any help would be appreciated!

Hey guys I am a little confused, I have a listing page that displays all of my rows in my SQL table. An example of what I am developing can be seen he  http://www.drivencar...k/used-cars.php So as you can see I have developed a listing page that fetches all of the table rows, each row is equivalent to one vehicle. I now want to let users filter the results using the form to the left, I was going to use AJAX originally however I feel as if it would take way to long to learn how to develop it that way. Here is the code setup I am using to achieve the example I have shown:

<?php
include('database.php');
try {
$results = $db->query("SELECT Make, Model, Colour, FuelType, Year, Mileage, Bodytype, Doors, Variant, EngineSize, Price, Transmission, PictureRefs, ServiceHistory, PreviousOwners, Options, FourWheelDrive FROM import ORDER BY Make ASC");
} catch (Exception $e) {
echo "Error.";
exit;
}

try {
$filterres = $db->query("SELECT DISTINCT Make FROM import ORDER BY Make ASC");
} catch (Exception $e) {
echo "Error.";
exit;
}
?>

As you can see the first block of code has two SQL selectors, the $results is used to fetch the whole table and list all vehicles. The second block is used to display the 'Make' column for the form. This block of code is the actual form:

<form>
<select class="form-control select-box" name="">
<option value="make-any">Make (Any)</option>
<?php while($make = $filterres->fetch(PDO::FETCH_ASSOC))
{
echo '
<option value="">'.$make["Make"].'</option>
';
} ?>
</select>
<button href="#" class="btn btn-block car-search-button btn-lg btn-success"><span class="glyphicon car-search-g glyphicon-search"></span> Search cars 
</button>
</form>

As you can see this block is using a while loop to display all of the 'Make's' in the 'Make' column and uses a DISTINCT clause so that it doesn't show identical options. Here is the block that lists the results to the page:

<?php while($row = $results->fetch(PDO::FETCH_ASSOC))
{
echo '
<div class="listing-container">
<a href="carpage.php"><h3 class="model-listing-title clearfix">'.$row["Make"].' '.$row["Model"].' '.$row["Variant"].'</h3></a>
<h3 class="price-listing">£'.number_format($row['Price']).'</h3>
</div>
<div class="listing-container-spec">
<img src="'.(explode(',', $row["PictureRefs"])[0]).'" class="stock-img-finder"/>
<div class="ul-listing-container">
<ul class="overwrite-btstrp-ul">
<li class="diesel-svg list-svg">'.$row["FuelType"].'</li>
<li class="saloon-svg list-svg">'.$row["Bodytype"].'</li>
<li class="gear-svg list-svg">'.$row["Transmission"].'</li>
<li class="color-svg list-svg">'.$row["Colour"].'</li>
</ul>
</div>
<ul class="overwrite-btstrp-ul other-specs-ul h4-style">
<li>Mileage: '.number_format($row["Mileage"]).'</li>
<li>Engine size: '.$row["EngineSize"].'cc</li>
</ul>
<button href="#" class="btn h4-style checked-btn hover-listing-btn"><span class="glyphicon glyphicon-ok"></span> History checked
</button>
<button href="#" class="btn h4-style more-details-btn hover-listing-btn tst-mre-btn"><span class="glyphicon glyphicon-list"></span> More details
</button>
<button href="#" class="btn h4-style test-drive-btn hover-listing-btn tst-mre-btn"><span class="test-drive-glyph"></span> Test drive
</button>
<h4 class="h4-style listing-photos-count"><span class="glyphicon glyphicon-camera"></span> 5 More photos</h4>
</div>
';
} ?>

So down to my question... How can I filter these results displayed in the listing block using the select element, when a user selects a 'Make' from the select element I want them to be able to submit the form and return all rows in the SQL table containing the same 'Make' string and hide other rows that are false. Any ideas how I can achieve this or any easier ways? Thanks