PHP - Escape Character Being Added To Post Data

Hello All,   New Year Greetings!!   I have integrated a script for TODO list in my website. Its working fine, but adding New task will be appear only after refreshing the page, whereas delete and save are happening as and when i click on them. I dont know where can i make it right.   Here is my code   Display

<div class="w-box-content todo-list">
                               
                               <ul class="todoList">
		
        <?php
		
		require "todo.class.php";
$query = mysql_query("SELECT * FROM `tz_todo` ORDER BY `position` ASC");

$todos = array();

while($row = mysql_fetch_assoc($query)){
	$todos[] = new ToDo($row);
}
		foreach($todos as $item){
			echo $item;
		}
		
		?>

    </ul>

<a id="addButton" class="green-button" href="#">Add a ToDo</a>
<div id="dialog-confirm" title="Delete TODO Item?">Are you sure you want to delete this TODO item?</div>

I am including

<link rel="stylesheet" href="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.0/themes/humanity/jquery-ui.css" type="text/css" media="all" />
            <link rel="stylesheet" type="text/css" href="styles.css" />
<script type="text/javascript" src="script.js"></script>

 and in ajax.php

require "connect.php";
require "todo.class.php";


$id = (int)$_GET['id'];

try{

	switch($_GET['action'])
	{
		case 'delete':
			ToDo::delete($id);
			break;
			
		case 'rearrange':
			ToDo::rearrange($_GET['positions']);
			break;
			
		case 'edit':
			ToDo::edit($id,$_GET['text']);
			break;
			
		case 'new':
			ToDo::createNew($_GET['text']);
			break;
	}

}
catch(Exception $e){
//	echo $e->getMessage();
	die("0");
}

echo "1";

$post='{"cart_items":[{"configuration":{"price":100,"recharge_number":"9999999999"},"product_id":"999","qty":1}]}';

i try this n reslut was :There are no valid items in cart:   help me plz
Edited by ShivaGupta, 30 November 2014 - 01:11 AM.

Hi Guys
I am parsing xml using.
I need to know if I can associate character data with tags while parsing character data.
For example I have the following xml:--

<tag1>tag1 character data</tag1>
<tag2>tag2 character data</tag2>

Now, is there a way I can associate "tag1 character data" with <tag1> and "tag2 character data" with <tag2> while parsing php.

Thanks in advance!!

Hi guys, I think I may be losing my marbles over this form I've put together. I'm trying to get my code to post the following to a database but my MySQL and PHP isn't that good, so wondering if any one could possibly suggest what I could do?

Here is my code:

Code: [Select]
<?php

// we check if everything is filled in

if(empty($_POST['fname']) || empty($_POST['lname']) || empty($_POST['email']))
{
die(msg(0,"All the fields are required"));
}


// is the sex selected?

if(!(int)$_POST['sex-select'])
{
die(msg(0,"You have to select your sex"));
}


// is the birthday selected?

if(!(int)$_POST['day'] || !(int)$_POST['month'] || !(int)$_POST['year'])
{
die(msg(0,"You have to fill in your birthday"));
}


// is the email valid?

if(!(preg_match("/^[\.A-z0-9_\-\+]+[@][A-z0-9_\-]+([.][A-z0-9_\-]+)+[A-z]{1,4}$/", $_POST['email'])))
die(msg(0,"You haven't provided a valid email"));



// I think here is where I need to put something to get the data into a table!




echo msg(1,"registered.html");


function msg($status,$txt)
{
return '{"status":'.$status.',"txt":"'.$txt.'"}';
}
?>
How do I get the $_POST['day'] and $_POST['month'], $_POST['year'] etc into a table? It should be so easy but my head is hurting from trying lots of things and tutorials online.

Any thoughts my PHP Freaks?

im trying to understand this Post Data script it's not posting, no errors:

postdata.php
Code: [Select]
<?php
 
//create array of data to be posted
//$post_data['firstName'] = 'Name';
$post_data['item_name'] = '12345';
 
//traverse array and prepare data for posting (key1=value1)
foreach ( $post_data as $key => $value) {
    $post_items[] = $key . '=' . $value;
}
 
//create the final string to be posted using implode()
$post_string = implode ('&', $post_items);
 
//we also need to add a question mark at the beginning of the string
$post_string = '?' . $post_string;
 
//we are going to need the length of the data string
$data_length = strlen($post_string);
 
//let's open the connection
$connection = fsockopen('www.example.com', 80);
 
//sending the data
fputs($connection, "POST  /i.php  HTTP/1.1\r\n");
fputs($connection, "Host:  www.example.com \r\n");
fputs($connection,
    "Content-Type: application/x-www-form-urlencoded\r\n");
fputs($connection, "Content-Length: $data_length\r\n");
fputs($connection, "Connection: close\r\n\r\n");
fputs($connection, $post_string);
 
//closing the connection
fclose($connection);

?>

reuslt should be posted here
i.php
Code: [Select]
<?php  require('database_connection.php');?>
<?php if(isset($post_items[0])) {


//$Subscription_id = mysql_real_escape_string($md5c);
//$PropertyID = mysql_real_escape_string($rowData['ID']);
//$User_ID = mysql_real_escape_string($rowData['User_ID']);
$item_name=mysql_real_escape_string($post_items[0]);
$query = 'INSERT INTO SP_subscriptions(id,) values("'.$item_name.'")';
 //$query = 'INSERT INTO SP_subscriptions(id,PropertyID,User_ID) values("'.$item_name.'","'.$PropertyID.'","'.$User_ID.'")';

$success = mysql_query($query);


    }
else
{ $item_name=54321;
$query = 'INSERT INTO SP_subscriptions(id) values('.$item_name.')';
 //$query = 'INSERT INTO SP_subscriptions(id,PropertyID,User_ID) values("'.$item_name.'","'.$PropertyID.'","'.$User_ID.'")';

$success = mysql_query($query);}

//var_dump($_POST);
//var_dump($query);
echo $query;


?>

Hi
I have a little strange problem.

I cannot get the post data from my form. It works fine if there is 10 or 15 user but reaching 40 or more than form values not posting.

This is output of size:
echo (int) $_SERVER['CONTENT_LENGTH'];  ===== 22164

Code: [Select]
if(isset($_POST['hiddenField']))
{
    // do some work;
}

$sql = mysql_query("SELECT id, name FROM user WHERE shop_id = '" .$_SESSION['id']. "' ORDER BY name ASC");
while($row = mysql_fetch_array($sql))
{
echo '
<div style="width:100%; border:solid 1px #CCC; background-color:#f1e7e7; margin-bottom:5px;">
<table class="tableSmall">
<tr><th width="81">' .$row['name']. '</th><th width="71">';
echo $grl_pic .'
</th>
<td width="622"><table width="100%">
<tr>';
for($j=0; $j<7; $j++)
{
$sql2  = mysql_query("SELECT user_master_id, user_start, user_end FROM work_master WHERE user_master_id = '" .$row['id']. "' AND date = '" .$days_no_kanji[$j]. "'");
$row2 = mysql_fetch_array($sql2);
if(mysql_num_rows($sql2) == 0)
{
$start = "00:00";
$end   = "00:00";
$m    = 0;
}
else
{
$start = $row2['user_start'];
$end   = $row2['user_end'];
$m    = 1;
}
echo '
<th><input type="hidden" name="userData[]" value="' .$row['id']. '_' .$j .'_' .$m. '" />
<select name="' .$row['id']. '_' .$j .'_' .$m. '_start">' .ShopHour($start). '</select><br />～<br />
<select name="' .$row['id']. '_' .$j .'_' .$m. '_end">' .ShopHour($end). '</select>
</th>';
}
echo '
</tr>
</table></td>
</tr>
</table>
</div>';
}
Is there someone has any idea why php is not posting?

i am trying to fit this php code to so when ever i upload a video link to the database it prints in the divs from left to right. ( i have made blank boxes for where the videos should be, so you guys can see what i mean. i will give you the code here.

Code: [Select]
<?php
$query = mysql_query("SELECT * FROM `G4V_Videos` ORDER BY `id` DESC") or die(mysql_error());

while ($data = mysql_fetch_array($query)) { 
?>
ID-nummer: <?php print $data['id']; ?> - Name: <?php print $data['navn']; ?> -
<a href="/Video.php?id=<?php print $data['id']; ?>"><img src="http://i.ytimg.com/vi/<?php print $data['link'];?>/hqdefault.jpg" width="200" height="160" /></a><br />
<a href="/Video.php?=<?php print $data['id']; ?>">
<?php
}
?>

and the website is here, http://www.game4vids.com/index.php

and i also want it so once i have used up all the boxes it posts the new video in box one and overwrites the old one if you get what i mean.

This website is a great example of what i mean.
http://www.retardo.dk

Hello,
I need to post plenty of data to a file with a java file with a .do extension using a php program.
How do I get to auto-post mass data in php from a database straight to this java file?
Put in mind that each mysql record is posted as its own form as in: <form ...>mysql record</form>

Thanks in advance

Hi All,

Not sure if this is a silly question so here we go.

I have some divs that have data attributes (data-value).  When i submit and post the form, can i use these values as part of the submission and put their data-value into the db?

Thanks as always in advance.

Hello     I have a nusoap web service running, which is fine, but I need to send a new variable in the parameters which decides what database to use...   This is how I call the function:

 
    $params = array(
 
'region' => '1' 
 
);
 
 
$response1 = $client->call('function1', array ($params)); // response will be in JSON
 

 

I'm doing an ajax call from javascript using jquery library:

Code: [Select]

    ajaxCall: function(process, obj, type){     
        $.post("registration-post.php", type + "=" + process,
            function(data){
                if(data==""){
                    $(obj).css(registration.errorNotificationType, registration.validatedColour);
                }else{
                    $('.error').append($.trim(data) + "<br />");
                    $(obj).css(registration.errorNotificationType, registration.errorColour);
                    registration.progress = false;   
                }
            }
        );
    }


When the ajax calls the php page, I want the php page to know what post information the javascript has sent, rather than pre-defining what the PHP should be trying to retrive from the POST data.

Something like


          // pseudo

          $_POST["whateverwassentfromajax"]



I want to do this because I want to have one function doing everything. So in my javascript I am saying, check if the username and email have already been used...
But i dont want to call two different php functions.



//pseudo

function 1(){
      $_POST["username"];
}
function 2(){
      $_POST["email"];
}



Is there a special way to know which post data has been sent.
Or do i need to do a few if statements in php.

Hi guys, I am creating a quiz system for my personal site, I am done with all the quiz questions creating part, but I am stuck with something like... user taking a random sql generated quiz and submitting it..

Here's randomly generated sql quiz, even the answers are in random order:

<form method="post">
<b>1. What is color or sky</b>
<ol>
<li><input name="question_3_answer" type="radio" value="6" /> sky</li>
<li><input name="question_3_answer" type="radio" value="8" />blue</li>  <-- true
<li><input name="question_3_answer" type="radio" value="3" />red</li>
</ol>

<b>2. What is name of my cat</b>
<ol>
<li><input name="question_6_answer" type="radio" value="9" />brat</li>  <--true
<li><input name="question_6_answer" type="radio" value="7" />rat</li>
</ol>

<b>3. What is name of my pet</b>
<ol>
<li><input name="question_18_answer" type="radio" value="9" />cat</li>  <--true
<li><input name="question_18_answer" type="radio" value="7" />dog</li>
</ol>
</form>

Now this is tricky part for me is.. receiving these data in another page.. since it's randomly generated questions, how do I know which question it is?
here's example I've tried :


$list_all_quiz_questions = $db->get_row("SELECT question_id, its_true_ans_id FROM question_table WHERE quiz_group = 'ef23fsdfers3e' ");

$i = 1;
foreach ($list_all_quiz_questions as $myquestion)
     {
$answer.$i == $_POST["question_".$myquestion->question_id."_answer"]; //?????????? not working lol ;((
    $i++
 }

So basically I'm using PHP to solve a math problem for me. The user puts in a few parameters and the program runs those numbers through the algorithm and spits out a bunch of xy coordinates. I'm using the PHP SELF method to retrieve the user input. This all works fine, but it's afterwords that I run into problems. I create a drop down menu of all the x values and I want the user to be able to choose any x value they wish and to have the corresponding y value be displayed. The problem is that I have to use another POST command for this and when I do, it wipes out all the computed data.  Of course the y-value is never displayed, and there lies the problem.

I'm sure there are many ways to get around this, but I could not find one out myself. Anyone have any ideas?

Iv tried asking a lot of people and have had no luck resolving this issue, so I will try here.

I have created a Form which gathers its information from a Database. The first form is a Dropdown Option, which when submitted takes you to another page. The new page is Supposed to use the value from the Dropdown to search the database and return the proper rows to populate a few text areas to edit the values. This is where I am stuck.

Compared to what most of you create this is probably sloppy and not too well structured, but I am new to this. Anyways, I will provide more information below now.

The following is the initial page with the first form. This is where you would select what page you wish to edit. (I believe this may be where the issue resides) - (I included the 'num' value before the 'name' value so that I could see it is getting the value from the database, which it is)

<form method="post" action="pageedit.php"><br />    
<?php
include "config.php"; 
    echo "<select name=\"page\">\n";

        $conn = mysql_connect("localhost", "$username", "$password");
        
        if (!$conn) {
            echo "Unable to connect to DB: " . mysql_error();
            exit;
        }
          
        if (!mysql_select_db("$database")) {
            echo "Unable to select $database: " . mysql_error();
            exit;
        }
        
        $sql = "SELECT * FROM sitePages";
        
        $result = mysql_query($sql);
        
        if (!$result) {
            echo "Could not successfully run query ($sql) from DB: " . mysql_error();
            exit;
        }
        
        if (mysql_num_rows($result) == 0) {
            echo "No rows found, nothing to print so am exiting";
            exit;

        }
        
        while ($row = mysql_fetch_assoc($result)) {
            echo "<option value='";
            echo $row['num'];
            echo "'>";
            echo $row['num'];
            echo " - ";
            echo $row['name'];
            echo "</option>";

        }
        
    echo "</select>";
?>
<br />
<input type="submit" />
</form> 

And then the following is the page that the form is sent to when submitted: (I have attempted to Echo the 'num' value sent so that I could verify that it is indeed sent, but it is not. I will post the message I receive after the PHP snippet

<form method="post" action="pageeditinsert.php"><br />
<?php
include "config.php";
echo $_POST['num']; 
$num=$_POST['num'];

$conn = mysql_connect("localhost", "$username", "$password");

if (!$conn) {

echo "Unable to connect to DB: " . mysql_error();

exit;

}

  

if (!mysql_select_db("$database")) {

echo "Unable to select $database: " . mysql_error();

exit;

}

$sql = "SELECT * FROM sitepages WHERE num = '$num'";

$result = mysql_query($sql);

if (!$result) {

echo "Could not successfully run query ($sql) from DB: " . mysql_error();

exit;

}

if (mysql_num_rows($result) == 0) {

echo "No rows found, nothing to print so am exiting";

exit;

}

while ($row = mysql_fetch_assoc($result)) {

echo "<input name'num' type='hidden' class='form1' value='";

echo $num;

echo "' maxlength='10' id='cat' /><br /><br /><br />";

echo "<input name='name' type='text' class='form1' value='";

echo $row['name'];

echo "' maxlength='20' id='name' /><br /><br />";

echo "<input name='desc' type='text' class='form1' value='";

echo $row['desc'];

echo "' maxlength='100' id='desc' /><br /><br /><br />";

echo "<input name='title' type='text' class='form1' value='";

echo $row['title'];

echo "' maxlength='100' id='title' /><br /><br /><br />";

echo "<input name'cat' type='hidden' class='form1' value='cat' maxlength='3' id='cat' /><br /><br /><br />";

}
?>
  <br /><br /><br />
  <center><input type="submit" /><input type="reset" /></center>
</form>

Below is the message I receive when attempting to echo the POSTed 'num' value:

Quote

Notice: Undefined index: num in C:\wamp\www\gondieCOM\editor\edit\pageedit.php on line 16
Call Stack
# Time Memory Function Location
1 0.0025 687600 {main}( ) ..\pageedit.php:0


(I am running the latest WAMP release on my personal PC for testing purposes until I have finished this and upload it to my hosting server)

Anyways thanks for your time. Hopefully someone has an idea for me.

Hi there,

I am wanting to insert post data into my DB, this is guest information

if i do a 

 $safePost = filter_input_array(INPUT_POST);
        print_r($safePost);

i get the following output.

Array

(

[action] => addGuestInfo

[guestno] => 2

[bookingid] => 151

[customerid] => 22

[Guestname-0] => Jamie

[Guestname-1] => Joe

[GuestAge-0] => 4-3

[GuestInfo-0] => celiac

[GuestAge-1] => 18

[GuestInfo-1] => wheat

)

normally the guestname-0, guestage-0, guestinfo-0 would be in correct order but we have to ensure the just incase it isns't (see output above) we cater for that aswell, we can have upto 6 guest details coming in at once.

so I need to loop through the data and insert into my DB. I have tried various for / foreach loops but cant seem to get it to group the data together

I have tried things like below, but it inserts each record multiple times.

$safePost = filter_input_array(INPUT_POST);
foreach($safePost as $key => $value){                 
            $exp_key = explode('-', $key);
          // for ($i =0; $i <= $guestcount; $i++) {
      switch ($exp_key[0]) {
        case 'Guestname':
            $booking->guestno = $exp_key[1];
            $booking->guestname = $val;
        break;
        case 'GuestAge':
            $booking->guestno = $exp_key[1];
            $booking->guestage = $val;

        break;
        case 'GuestInfo':
            $booking->guestno = $exp_key[1];
            $booking->guestinfo = $val;

        break;
        default:
        break;
  }
 //CALLS FUNCTION TO INSERT TO DB result = lastInsertId();
  $result= $booking->insertGuestDetails();
//}
}