Learn VBA & Macros in 1 Week!

PHP - Validate 200 Input Fields

Full Excel VBA Course - Beginner to Expert

Validate 200 Input Fields	View Content

Hello, i need to validate 200 input fields if they are not empty, i have the following code where i'm stuck and i'm missing something any help is appreciated
Code: [Select]
if($_SERVER['REQUEST_METHOD'] == 'POST') {
//print_r($_POST);
foreach ($_POST as $value) {
if (empty($value)){
echo 'empty';
} else {
echo 'notempty';
}
}
}

Full Excel VBA Course - Beginner to Expert

Php Fields Logic & Math (input & Select Fields)

Similar Tutorials

View Content

Hey guys, Thank you in advance... here is my situation, I have a form with three (3) fields in it, the 'student name' is unlimited textfield with an "add more" button to it and I have two select fields ('number of shirts' and 'trophies') that depend on the number of entries for 'student name'... I want to create the select fields based on this math, for as many 'student name' entries: 1- i want to have the select form for 'number of shirts' to be 0 up to that number... so if there are 6 'student name' entries, the select options will be 0,1,3,4,5,6,7 2- I want to have the select form for 'trophies' to be 5 'student name' entries to 1 'trophies', for example if there are 6 'student name' entries, the select options will be 0,1... if there are 13 entries, options will be 0,1,2... So if there are less than 5 'student name' entries, the select field will not show (hidden) of course if there are no 'student name' entries, these two fields won't show up (hidden) let me know if that make sense and ANY help or directions will be GREATLY APPRECIATED. Thanks guys!

Validate That All Fields In A Form Have A Value

Similar Tutorials

View Content

Hello. So I already know an extremely elementary way to check to see if a form field is blank using PHP. For example:
Code: [Select]
if ($subject == "")
The question I have is, is there a way to have php check every field in a form to make sure it has some sort of value? I want to create an 'if' statement which basically says, "If all form fields have something filled in, then do this" For example

Code: [Select]
if ($subject == "any value") & ($name == "any value") & ($comment == "any value")

Not sure if that makes sense. Any help would be greatly appreciated!!!

Validate Huge Fields

Similar Tutorials

View Content

I need to validate the POST fields below except a few hidden inputs like User_id & category: They are not huge but i would not like to write for each a line of code like if(empty($_popst['field'])) ...
How can simplify this by checking only if they are empty and display a message that lists all fields that were not filled?

Code: [Select]
array('user_id'=>$data['Id'], 'surname'=>$_POST['surname'], 'firstname'=>$_POST['firstname'], 'middlename'=>$_POST['middlename'], 'id_number'=>$_POST['id_number'], 'pin_number'=>$_POST['pin_number'], 'street'=>$_POST['street'], 'estate'=>$_POST['estate'], 'hse_number'=>$_POST['hse_number'], 'town'=>$_POST['town'], 'tele'=>$_POST['tele'], 'mobi'=>$_POST['mobi'], 'work_street'=>$_POST['work_street'], 'work_building'=>$_POST['work_building'], 'company'=>$_POST['company'], 'work_town'=>$_POST['work_town'], 'work_tele'=>$_POST['work_tele'], 'work_fax'=>$_POST['work_fax'], 'cont_surname'=>$_POST['cont_surname'], 'cont_firstname'=>$_POST['cont_firstname'], 'cont_middlename'=>$_POST['cont_middlename'], 'cont_street'=>$_POST['cont_street'], 'cont_building'=>$_POST['cont_building'], 'cont_company'=>$_POST['cont_company'], 'cont_home_tele'=>$_POST['cont_home_tele'], 'cont_office_tele'=>$_POST['cont_office_tele'], 'cont_mobi'=>$_POST['cont_mobi']);

Stop And Validate Empty Fields - Php

Similar Tutorials

View Content

Hi I'm currently having a problem with my form. Users submit an empty field into the database and the next time another user tries to enter it just says username has been taken. I need some help on how to confirm that the username and email field isnt empty when inserted and that the email address is in the correct format.

<?php include "base.php"; ?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">  
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />  
 
<title>User Management System (Tom Cameron for NetTuts)</title>
<link rel="stylesheet" href="style.css" type="text/css" />
</head>  
<body>  
<div id="main">
<?php
     $username = mysql_real_escape_string($_POST["username"]);
$email = mysql_real_escape_string($_POST["email"]);








$mxitid = mysql_real_escape_string($_SERVER["HTTP_X_MXIT_USERID_R"]);
if(!isset($mxitid))
{
	$mxitid = "DEFAULT";
}

     $checkusername = mysql_query("SELECT * FROM Users WHERE mxitid = '".$mxitid."'");
      $checkemail = mysql_query("SELECT * FROM Users WHERE email = '".$email."'");

     if(mysql_num_rows($checkusername) == 1)
     {
        echo "<h1>Error</h1>";
        echo "<p>Sorry, that username is taken. Please go <a href=\"register.php\">back</a>and try again.</p>";
     }
elseif(mysql_num_rows($checkemail) == 1)
     {
        echo "<h1>Error</h1>";
        echo "<p>Sorry, that email is taken. Please go <a href=\"register.php\">back</a>and try again.</p>";
     }

     elseif ($_POST["register"]) 
     {
$username = mysql_real_escape_string($_POST["username"]);
if(!isset($mxitid))

$mxitid = mysql_real_escape_string($_SERVER["HTTP_X_MXIT_USERID_R"]);
if(!isset($mxitid))
{
	$mxitid = "DEFAULT";
}

        $registerquery = mysql_query("INSERT INTO Users (Username,mxitid,email) VALUES('".$username."','".$mxitid."','".$email."')");
        if($registerquery)
        {
            echo "<h1>Success</h1>";
            echo "<p>Your account was successfully created. Please <a href=\"index9.php\">click here to start chatting</a>.</p>";
        }
     }

else
{
    ?>
     
   <h1>Register</h1>
     
   <p>Please enter your details below to register.</p>
<p>Keep it clean! or you might get banned!</p>

     
    <form method="post" action="register.php" name="registerform" id="registerform">
    <fieldset>
        <label for="username">Username:<br>
Using emoticons in your name won't work!</label><input type="text" name="username" id="username" /><br />
<label for="email">Email:<br>(We need your real one to be able to contact you!)<br>
 If you don't have one make use of your mxit email service.</label><input type="email" name="email" id="email" /><br />

        <input type="hidden" name="mxitid" id="mxitid" value="<? $_SERVER['HTTP_X_MXIT_USERID_R']; ?>"/><br />
        <input type="submit" name="register" id="register" value="Register" />
    </fieldset>
    </form>
     
    <?php
}
?>
 
</div>
</body>
</html>

I tried using

function check_input($data, $problem='')
{
    $data = trim($data);
    $data = stripslashes($data);
    $data = htmlspecialchars($data);
    if ($problem && strlen($data) == 0)
    {
        die($problem);
    }
    return $data;
}

but it didnt seems to work

Validate Input

Similar Tutorials

View Content

Hello I have a PHP page that sends text entered by a user to our database which we use to display news. This system supports various languages but occasionally we get issues with odd characters being entered... For example, the premade glyph for ellipsis which is normally represented by 3 .'s broke our system today How can I check that each character is valid and within range? These are our character ranges ExtendedLatin_c_iLowerAlphaChar = 0x00C0; ExtendedLatin_c_iUpperAlphaChar = 0x01FF; Arabic_c_iLowerChar = 0x600; Arabic_c_iUpperChar = 0x6FF; Arabic_c_iLowerAlphaChar = 0x621; Arabic_c_iUpperAlphaChar = 0x64A; Arabic_c_iLowerNumericChar = 0x660; Arabic_c_iUpperNumericChar = 0x669; So each character must fall within one of these ranges... but I have no idea how to get the hex value of a character in PHP Thanks

Trying To Validate Input, But It's Not Working

Similar Tutorials

View Content

Validate Input Numeric Data

Similar Tutorials

View Content

Hey Guys...I am trying to secure my php file and have been reading a lot regarding sql injection.

I still dont understand clearly how to prevent sql injection through numeric data input, since from what I understood mysql_real_escape_string() does nothing about it only prevents attacks on string input.

Here's an example:

if ($action == "checkId")
{
//retreive data from flash
$user_id=mysql_real_escape_string($_POST['Id']);

$result = mysql_query("SELECT user_id from users WHERE user_id = '$user_id'");
if (mysql_num_rows($result) > 0)
{
echo "status1=exists";
}
else
{
echo "status1=id doesnt exist";
}
}

I would like to create a function like this:

foreach($_POST as $post)
{
$postvars[$key] = htmlentities($post); //XSS prevention
$postvars[$key] = mysql_real_escape_string($post); //Sql String Prevention
}

But then again...How do I check on the numeric POST's ? how do I validate them through this function?

Any suggestions and/or ideas?

Thanks a lot in advance!
Cheers.

Form Input With Two Date Formats In Two Different Input Fields From Select Date

Similar Tutorials

View Content

I have a calendar select date function for my form that returns the date in the calendar format for USA: 02/16/2012. I need to have this appear as is for the form and in the db for the 'record_date' column, but I need to format this date in mysql DATE format (2012-02-16) and submit it at the same time with another column name 'new_date' in the database in a hidden input field. Is there a way to do this possibly with a temporary table or something?

Any ideas would be welcome.

Doug

Ensuring There Is Input In At Least 1 Of 2 Fields

Similar Tutorials

View Content

I have 2 fields, one for Mother's mobile, the other for Father's mobile. I want to ensure that at least one of the 2 fields contains a number. This is what I have:

Code: [Select]
<?php
      if(!isset($_POST['guardian1_mobile']) && !isset($_POST['guardian2_mobile'])) { // no number entered in either field
        $errors[] = 'You must enter a mobile number in at least one of the Guardian1 or Guardian2 Mobile fields.';
      } else {
        // if Mother mobile
        if(!is_numeric($_POST['guardian1_mobile']) || strlen(trim($_POST['guardian1_mobile'])) != 7) { // number must be numeric and exactly 7 digits
            $errors[] = '<strong>Guardian1 mobile</strong>: please enter a 7-digit number without spaces or dashes.';
          } else {
            $_SESSION['guardian1_mobile'] = $_POST['guardian1_mobile'];
          }

        // if Father mobile
          if(!is_numeric($_POST['guardian2_mobile']) || strlen($_POST['guardian2_mobile']) != 7) {
            $errors[] = '<strong>Guardian2 mobile</strong>: please enter a 7-digit number without spaces or dashes.';
          } else {
            $_SESSION['guardian2_mobile'] = $_POST['guardian2_mobile'];
          }
      }

However, when I leave both fields blank, errors for the 'else' part of the condition are returned ('Please enter a 7-digit number...'). But it should never get as far as the 'else'....

Can anyone tell me what's wrong with my logic in the first line?...

Thanks in advance.

Adding Input Fields

Similar Tutorials

View Content

I have a website with a variable number of inputs in various categories. I want to allow the user to add rows to the table with the input lines in every category. The table looks like this:

<tr><th>Working Capital Changes</th></tr><tr><td><input type="hidden" name="category_code[]" value="WORK"><input type="text" name="description[]" value="Increase (decrease) in working capital" size="60"></td>
        <td><input type="text"  name="amount[1][]" value="" onblur="this.value = formatNumber2Comma(this.value);" ></td></tr>
<tr><td><input type="hidden" name="category_code[]" value="WORK"><input type="text" name="description[]" value="" size="60"></td>
        <td><input type="text"  name="amount[1][]" onblur="this.value = formatNumber2Comma(this.value);" ></td></tr>
<tr><th>Depreciation and Amortization</th></tr><tr><td><input type="hidden" name="category_code[]" value="DEPR"><input type="text" name="description[]" value="Depreciation and Amortization (for taxes)" size="60"></td>
        <td><input type="text"  name="amount[1][]" value="" onblur="this.value = formatNumber2Comma(this.value);" ></td></tr>
<tr><td><input type="hidden" name="category_code[]" value="DEPR"><input type="text" name="description[]" value="" size="60"></td><td><input type="text"  name="amount[1][]" onblur="this.value = formatNumber2Comma(this.value);" ></td></tr>

I tried adding the following near the top of the page:

    <script src="//ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js"></script>
    <script type="text/javascript">
        var count = 0;
$(function(){
    alert ('wow');
	$('tr#add_field').click(function(){
            alert ('whee');
		count += 1;
		$('#container').append('<table><tr><td><input id="field_' + count + 'type="hidden" name="category_code[]" value="DEPR"><input type="text" name="description[]" value="" size="60"></td><td><input type="text"  name="amount[1][]" onblur="this.value = formatNumber2Comma(this.value);" ></td></tr></table>' );
	});
});

I get the wow alert on page load and whee when I click the link:

<tr id="add_field"><th><a href="#">Click to add another line</a></th></tr>

that I added to the bottom of the table before the </table> but I do not get an additional line I have tried moving the add_field line outside of the table and changing the <tr></tr> to a <p></p> but that does not help.

Php Mail Headers From Input Fields?

Similar Tutorials

View Content

I have an email form that is sending to an email address. There are five fields where the person sending can input their Name, Address, City, State, and Zip. Everything is working, except I want the input from these fields to be the the headers in the PHP email.

For instance it submits and send the letter, but I want the senders Name, Address, City, State, and Zip to be posted after the "Sincerely" in the letter sent. Here is what the input boxes of the form looks like:

Code: [Select]
<p>Sincerely,<br />
<label for="from">Name:</label>
<input type="text" name="from" id="name" value="<?php echo $_POST['from'];?>"/><br />
<label for="street">Street:</label>
<input type="text" name="street" id="street" value="<?php echo $_POST['street'];?>"/><br />
<label for="city">City:</label>
<input type="text" name="city" id="city" value="<?php echo $_POST['city'];?>"/><br />
<label for="zip">Zip:</label>
<input type="text" name="zip" id="zip" value="<?php echo $_POST['zip'];?>"/><br />
<label for="email">E-mail:</label>
<input type="text" name="email" id="email" value="<?php echo $_POST['email'];?>"/></p>
<input type="submit" class="button" value="Submit" />
How do I go about posting the PHP headers in the email upon submission?

Need To Insert Field Fields Into Input

Similar Tutorials

View Content

can someone tell me why this won't work? I just want to key in the amtpaid and have fields inserted. I get no errors but the only field inserted is the datepaid .
<html><head>
<script>
function $_(IDS) { return document.getElementById(IDS); }
function calculate_paid() {
var amtpaid = parseInt($_("amtpaid").value);
var rentdue = parseInt($_("rentdue").value);
var prevbal = parseInt($_("prevbal").value);
var secdep = parseInt($_("secdep").value);
var latechg = parseInt($_("latechg").value);
var damage = parseInt($_("damage").value);
var courtcost = parseInt($_("courtcost").value);
var nsf = parseInt($_("nsf").value);
var hudpay = parseInt($_("hudpay").value);
var late = ($_("late").value);
var paidsum = parseInt($_("paidsum").value);
var dateNow = new Date();
var dayNow = dateNow.getDate();
var datePaid = (dateNow.getMonth()+1)+"/"+dateNow.getDate()+"/"+dateNow.getFullYear();
$_('datePaid').value = datePaid;
if(dayNow > 5) { late = "L"; prevbal = prevbal + 10; }
paidsum = paidsum + amtpaid
var tentpay = amtpaid - hudpay;
var totOwed = rentdue + prevbal - hudpay;
var left = totOwed - amtpaid;
if (amtpaid <= totOwed) { prevbal = left; }
left = amtpaid - totOwed;
if (left <= secdep) { secdep = secdep - left; }
left = left - secdep;
if (left <= damage) { damage = damage - left; }
left = left - damage;
if (left <= latechg) { latechg = latechg - left; }
left = left - latechg;
if (left <= courtcost) { courtcost = courtcost - left; }
left = left - courtcost;
if (left <= nsf) { nsf = nsf - left; }
prevbal = left - nsf;
}
</script>
</head><body>
<?php
mysql_connect(localhost,root,"");
mysql_select_db(test) or die( "Unable to select database");
if(!empty($_POST["submit"]))
{
$apt = $_POST['apt'];
$query="SELECT * FROM testdata Where apt='$apt'";
$result=mysql_query($query);
if(mysql_num_rows($result))
{
echo "<form action='#' method='post'><b>Rent Payment :<br /><br />
<table cellspacing=0 cellpadding=0 border=1>
<tr>
  <th>Name</th>
  <th>Apt</th>
  <th>Paid</th>
  <th>Due</th>
  <th>Prev Bal</th>
   <th>Sec Dep</th>
   <th>Late Chg</th>
   <th>Dmg</th>
   <th>Court Cost</th>
   <th>NSF</th>
  <th>Tent Pay</th>
  <th>Hud Pay</th>
    <th>Date Paid</th>
  <th>Late</th>
  <th>Comments</th>
<th>Paidsum</th>
</tr>";
while($row = mysql_fetch_assoc($result))
{
echo "<tr>
<td><input type='text' size=25 name='name' value='" . $row['name'] . "'></td>
<td><input type='text' size=2 name='apt' value='" . $row['apt'] . "' ></td>
<td><input type='text' size=4 id='amtpaid' name='amtpaid' value='" . $row['amtpaid'] ."' onBlur='calculate_paid(this)'></td>
<td><input type='text' size=4 id='rentdue' name='rentdue' value='" . $row['rentdue'] . "'></td>
<td><input type='text' size=4 id='prevbal' name='prevbal' value='" . $row['prevbal'] ."'></td>
<td><input type='text' size=4 id='secdep' name='secdep' value='" . $row['secdep'] ."'></td>
<td><input type='text' size=4 id='latechg' name='latechg' value='" . $row['latechg'] ."'></td>
<td><input type='text' size=4 id='damage' name='damage' value='" . $row['damage'] ."'></td>
<td><input type='text' size=4 id='courtcost' name='courtcost' value='" . $row['courtcost'] ."'></td>
<td><input type='text' size=4 id='nsf' name='nsf' value='" . $row['nsf'] ."'></td>
<td><input type='text' size=4 id='tentpay' name='tentpay' value='" . $row['tentpay'] . "'></td>
<td><input type='text' size=4 id='hudpay' name='hudpay' value='" . $row['hudpay'] ."'></td>
<td><input type='text' size=10 id='datepaid' name='datepaid' value='" . $row['datepaid'] . "'></td>
<td><input type='text' size=1 id='late' name='late' value='" . $row['late'] . "'></td>
<td><input type='text' size=25 name='comments' value='" . $row['comments'] . "'></td>
<td><input type='text' size=4 id='paidsum' name='paidsum' value='" . $row['paidsum'] . "'></td>
</tr>";
}
echo "</table>
<input type='submit' name='update' value='Make Payment' />
</form>";
}
else{echo "No listing for apartment $apt.<br />Please select another.<br />";}
}
if(!empty($_POST["update"]))
{
$sql = "UPDATE testdata SET
name = '" . mysql_real_escape_string($_POST['name']) . "',
amtpaid = '" . mysql_real_escape_string($_POST['amtpaid']) . "',
rentdue = '" . mysql_real_escape_string($_POST['rentdue']) . "',
prevbal = '" . mysql_real_escape_string($_POST['prevbal']) . "',
secdep = '" . mysql_real_escape_string($_POST['secdep']) . "',
latechg = '" . mysql_real_escape_string($_POST['latechg']) . "',
nsf = '" . mysql_real_escape_string($_POST['nsf']) . "',
damage = '" . mysql_real_escape_string($_POST['damage']) . "',
courtcost = '" . mysql_real_escape_string($_POST['costcost']) . "',
tentpay = '" . mysql_real_escape_string($_POST['tentpay']) . "',
hudpay = '" . mysql_real_escape_string($_POST['hudpay']) . "',
datepaid = '" . mysql_real_escape_string($_POST['datepaid']) . "',
late = '" . mysql_real_escape_string($_POST['late']) . "',
comments = '" . mysql_real_escape_string($_POST['comments']) . "',
paidsum = '" . mysql_real_escape_string($_POST['paidsum']) . "'
WHERE apt='".$_POST["apt"]."'";
mysql_query($sql) or die("Update query failed.");
echo "Record for apartment ".$_POST["apt"]." has been updated";
}
?><form method="post" action="#">
<br />
<input type="text" name="apt"/> <p>
<input type="submit" name="submit" value="select apartment"/>
</form>
</body></html>

Validated Input In Drop Down Fields

Similar Tutorials

View Content

Hello people, thank you to everyone that has helped me on this forum. You have been terrific.

I am submitting a form to a database and am having a small problem with the validation scripts.

Basically if the user doesn't put something into one of the fields they get an error message. However, I am keeping the information already submitted in the input box with the following code
Code: [Select]
<input type='text' name='username' size = '40' maxlength='30' value = '<?php echo $username; ?>'>
This is so that the user doesn't have to input the same data again if he forgot one box.

How do I do the same for "drop down" boxes?

Here is the code from the form for the "ppr" (aviation terms 'Prior Permission Required')
Code: [Select]
<select name = "ppr">
<option value = "Yes">Yes
</option>
<option value="No">No
</option>
</select>
The problem I have is that there are quite a number of these drop down boxes on the form I have created. And it always goes back to the first "option value" when there is an error.

I do have a variable for $ppr, please could someone tell me how to incorporate it so that the user doesn't have to select the correct option value all over again.

Hope my explanation is clear.

Thanks in advance.

Protecting Input Fields From Illegal Characters.

Similar Tutorials

View Content

Hi all,

I'm working on this site which I'll soon ask the guys in the testing forum to have a peek at. It's essentially an online community that was a uni project that has spiraled and grown exponetially.

I've spent many many hours in front of books and tutorals etc to put it together and as far as scripting goes, it seems to be fine. The problem i'm having...The tut's that I read / watched were using eregi_replace to protect text fields and this is now unsuported.

I want my site to be as secure as it can be, within reason.

I've tried using preg_replace instead and have searched for the syntax but i keep getting strang results.
I'm working on the "bio" field at the moment and then when that works I can move on and a-ply the same idea to the other fields.

This si what I have and what I've changed.
if ($_POST['parse_var'] == "bio"){

    $bio_body = $_POST['bio_body'];
    //$bio_body = str_replace("'", "'", $bio_body); (WAS TESTING THIS BUT NO JOY)
    //$bio_body = str_replace("`", "'", $bio_body);
$bio_body = mysql_real_escape_string($bio_body);
$bio_body = nl2br(htmlspecialchars($bio_body));

$bio = $_POST['bio'];
   $bio = eregi_replace("'", "'", $bio); (This works but is not as secure)
   $bio = eregi_replace("`", "'", $bio);
$bio = mysql_real_escape_string($bio);
$bio = nl2br(htmlspecialchars($_POST['bio']));

$sqlUpdate = mysql_query("UPDATE members SET bio='$bio' WHERE id='$id'");
and so on....}

When I change it to str_replace if I type in don't the whole word is deleted. when I type in preg I get an error.
Can someone please give me the correct code / syntax for getting the result I want.

I just want to make sure that every single field that has a user input is protected against any malicious attacks.
Thanks.

Getting Matching Post Values From Input Fields

Similar Tutorials

View Content

Hi

I have a form that is to input data from input fields to a table.
The form is as follows:

                            $query = $DB->query("SELECT country_code, country_id, IF(country_code = '".$country_code."', '', '') AS sel FROM exp_sme_countries WHERE site_id='".$this->settings['site_id']."' ORDER BY country_name ASC");
                            foreach ($query->result as $row)
                            {
                               $options .= '<label>' . 'Phrase for ' . $this->settings['countries'][$row['country_code']] . '</label>' . '<br />';
                               $options .= '<input style="width: 100%; height: 5%;" id="country_data" type="text"  name="country_id[]"  />' . '<br /><br />';
                               $options .= '<input type="hidden"  name="country_data[' . $row['country_id'] . ']" value="'.$row['country_id'].'"  />';
                            }

This outputs:
Code: [Select]
<input style="width: 100%; height: 5%;" id="country_data" type="text" name="country_id[]" />
<input type="hidden" name="country_data[68]" value="68" />

<input style="width: 100%; height: 5%;" id="country_data" type="text" name="country_id[]" />
<input type="hidden" name="country_data[28]" value="28" />

What I need to do, is get the values from the input fields and then match them with the correct hidden field value

So if in the first input field, I typed in 'Test data' and the second input, i typed 'This is great'

On the POST, I need to find the the value ('Test data') and also the value from the hidden field.

So something like:
Quote

The text you entered is: Test data with hidden value of 68
The text you entered is: This is great with hidden value of 28

I'd rather not use $_GET as this is a form that inserts data into a database.

Could someone point my in the right direction or provide an example?

Should I Escape Values From Radio Input Fields?

Similar Tutorials

View Content

Hey Guys. I have a quick question. Should i "prep" input values coming from a radio or checkbox input field? Can an SQL injection occur through those 2 input fields, or is it only text fields?

Match And Count User Input Against Mysql Fields

Similar Tutorials

View Content

Outputting Form Input Errors Underneath Fields

Similar Tutorials

View Content

I built a basic form with certain fields required. When a required field isn't filled, the errors are echoed but not in the best area. I'd like for each error message to be displayed underneath their respected input fields. What do I need to look into?

<?php
if(!empty($_POST['submit']))
{
// set variables
$name = mysql_real_escape_string($_POST['name']);
$email = mysql_real_escape_string($_POST['email']);
$email2 = mysql_real_escape_string($_POST['email2']);
$age = mysql_real_escape_string($_POST['age']);
$city = mysql_real_escape_string($_POST['city']);
$state = mysql_real_escape_string($_POST['state']);

// 1A. REQUIRED FIELDS VERIFICATION
if(!empty($name) && !empty($email) && !empty($email2) && !empty($city) && !empty($state))
{

// 1B. END REQUIRED FIELDS VERIFICATION
} else {
echo '<img src="images/icon_error.png" alt="" title="" /> Please fill out the required fields.<br />';

if (empty($name))
{
echo 'Whats your name?!<br />';
} if (empty($email))
{
echo 'No email given.<br />';
} if (empty($email2))
{
echo 'Please verify your email<br />';
} if (empty($city))
{
echo 'What city are you from?<br />';
} if (empty($state))
{
echo 'What State!<br />';
}

echo '<br /><br />';
}
// 1B. END REQUIRED FIELDS ERROR CODES

}
?>

<form action="<?php $_SERVER['PHP_SELF']; ?>" method="post">

<div class="formSec"><label for="name" class="required">Full Name:</label>
<input type="text" name="name" id="name" value="" /></div>

<div class="formSec"><label for="email" class="required">Email:</label>
<input type="text" name="email" id="email" value="" /></div>

<div class="formSec"><label for="email2" class="required">Confirm Email:</label>
<input type="text" name="email2" id="email2" value="" /></div>

<div class="formSec"><label for="age" class="required">Age:</label>
<input type="text" name="age" id="age" value="" /></div>

<div class="formSec"><label for="city" class="required">City:</label>
<input type="text" name="city" id="city" value="" /></div>

<input class="submit" type="submit" name="submit" value="Submit" />
</form>

Is It Possible To Split An Input Field Into Two Fields? See Details Inside.

Similar Tutorials

View Content

I would like to split the field specific location on a page into two fields.

( This is how it looks now: http://qwikad.com/?view=post&cityid=269&lang=en&catid=3&subcatid=27&shortcutregion= )

I want keep the same MySQL table for that field but make it possible for visitors to enter 2 separate texts. This is how the code looks right now:

<input name="area" type="text" size="40" class="input" maxlength="50" value="<?php echo $data['area']; ?>">

I am not strong in PHP programming at all, so I tried to copy and paste that field twice, but it only posts one entry out of the two.

Can this be done?

Password Protect Code W/ Custom Input Fields Not Working. Help! :)

Similar Tutorials

View Content

I have a problem w/ a widely used password protect php code. I use a business directory program that allows custom input fields. I'm using this code to password protect a business listing page in my directory code. I created custom fields for the username & password so a listing can enter their own user/pass but when I test it it won't work when I'm calling/echoing the fields. When I hardcode it w/ a user/pass it works. Any ideas on how I should recode this?:
Quote

<?php
// Define your username and password
$username = "<?php echo $custom_74; ?>";
$password = "<?php echo $custom_16; ?>";
if ($_POST['txtUsername'] != $username || $_POST['txtPassword'] != $password) {
?>
<h1>Login</h1>
<form name="form" method="post" action="<?php echo $_SERVER['REQUEST_URI']; ?>">
<p><label for="txtUsername">Username:</label>
<br /><input type="text" title="Enter your Username" name="txtUsername" /></p>
<p><label for="txtpassword">Password:</label>
<br /><input type="password" title="Enter your password" name="txtPassword" /></p>
<p><input type="submit" name="Submit" value="Login" /></p>
</form>
<?php
}
else {
?>

I close the code correctly.
<?php echo $custom_74; ?> & <?php echo $custom_16; ?> are just incidently my custom field echo codes. I have over 150 custom fields working fine for user/listee options. The password protect code won't accept echos it seems as coded above.

Thanks, Gene