mysqli insert problems

Question

0.00/5 (No votes)

See more:

Hi, i'm having a little bit of trouble inserting data into my mysql database i have attached the full script at the bottom but i have left out the $link value witch is used as mysqli_connect for security reasons any help would be appreciated the section that i'm having problems with is

else if (mysqli_num_rows($result) == 0)
{
	echo("create");
	mysqli_query($link,"INSERT INTO website (`uuid`, `name`, `pass`, `email`) VALUES ($uuid, $user, 556, $email)") or mysqli_error($link);
}

i get the message create but it don't insert the data into the table.

full script:

$uuid = $_REQUEST['uuid'];
$user = $_REQUEST['user'];
$email = $_REQUEST['email'];
//mysqli_query($link, "SELECT * FROM website WHERE user = '$usr'");
$result = mysqli_query($link, "SELECT * FROM website WHERE uuid = '$uuid'");
if (mysqli_num_rows($result) > 0)
{
    // output data of each row
    while($row = mysqli_fetch_assoc($result))
{
	if($uuid != $row["uuid"])
	{
		echo("Can not create 2 accounts!");
		//user already registered
	}
	}
	}
else if (mysqli_num_rows($result) == 0)
{
	echo("create");
	mysqli_query($link,"INSERT INTO website (`uuid`, `name`, `pass`, `email`) VALUES ($uuid, $user, 556, $email)") or mysqli_error($link);
}

thank you in advance :)

Posted 23-Feb-15 14:14pm

Member 11472678

Add a Solution

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Mohibur Rashid · Answer 1 · 2015-02-23T14:35:00

Solution 1

The best way to figure out your own error is echoing the query and run it on mysql

example:

PHP

echo
$Query="INSERT INTO website (`uuid`, `name`, `pass`, `email`) VALUES ($uuid, $user, 556, $email)";
mysqli_query($link,$Query) or mysqli_error($link);

And if you look at the top of your code, you would see that you did it right once. Then you screwed up. You must have to use quotes around your variable
example : your code line 5

Your code is highly risky. Almost any naive programmer will be able to destroy your database or steal information from your system.

have a take a look at this website link[^]. Let us know your progress.

Posted 23-Feb-15 14:35pm

Mohibur Rashid

v2

Comments

Member 11472678 24-Feb-15 4:59am

Hi, thanks for your concern about security i'm just getting a running model up and going before i implement security and i have made the changes you suggested and im still just getting my "create" message no errors what so ever so im stumped i dont understand how it can work when it dose the check to see if the user already exists and then just refuse to work for the input of a new user.

please note this is not going to be used by the website this is to input data from additional palatforms i dont know if your fumilliure with LSL but its coming in from a virtual world so i will be implementing security on both sides with encryption once i can get it to function correctly.

i assume you ment for this to be be changed to what you said

echo("create");
//mysqli_query($link,"INSERT INTO website (uuid, name, pass, email) VALUES ('$uuid', '$user', '556', '$email')");
$Query="INSERT INTO website (`uuid`, `name`, `pass`, `email`) VALUES ('$uuid', '$user', '556', '$email')";
mysqli_query($link,$Query) or (mysqli_error($link));

Member 11472678 24-Feb-15 5:15am

all is working now turns out due to my lack of sleep last night i lost the ability to spell when creating the database i wrote "name" instead of "user" haha now i can start messing around with md5 encryption :-)