php - Can not login in my site with mysql_real_escape_string -


I need some help here I have coded some kind of site with "login" system and to prevent SQL injection I am trying. Everything works perfect without passing that. When I add mysql_real_escape_string (), I can not log on to my site more annoying now.

I have no idea what should be wrong, they tried to mislead the problem but got nothing. That's why I've got a form that sends about $ _POST ['user'] and $ _POST ['pass'] to the user in check.php In Check.php I got the code to find out that the user and the user have the equivalent and passes in MySQL db. 

  & lt ;? Includes php ('mysql.php'); // mysql connection is included if (isset ($ _ POST ['user']) and isset ($ _ POST ['pass'])) {$ user = mysql_real_escape_string ($ _ POST ['user']); $ Pass = mysql_real_escape_string ($ _ POST ['pass']); $ Line = mysql_fetch_row (mysql_query ("Select user from user name = '$ user'")); If ($ user == $ line [1]) and ($ pass == $ line [2])) {setcookie ("user", $ user, time (+3600, "/"); Header ('location: secret.php'); } And {header ('location: index.php'); }; };

The username and password contain only letters and numbers, and I know that I am typing my username and password.

If the user name and password are only alpha-numeric characters, try using it so that You can confirm only $ users and $ pass only alpha-numeric characters. If they are (if they are back), then you do not need to synthesize them.

By the way, you now have mysqli_real_escape_string You can use mysqli_real_escape_string instead!

I hope this is your chance

Take a look at this similar question that has been solved:

Edit: Also, the comment of Fred-e-has caused you to debug your code. Good way is provided.


Comments

Post a Comment

Popular posts from this blog

python - Overriding the save method in Django ModelForm -

I'm having trouble overriding a ModelForm save method. I get this error I'm: Exception type: TypeErier Exception Value: Save () found an unexpected keyword argument 'committed' My intentions include a form 3 fields Submit several values ​​for, then create an object for each combination of those areas, and to save each object file models.py class collarsult type (models.Model): id = model. AutoField (db_column = 'icontact_result_code_type_id', primary_key = true) callResult = models.ForeignKey ( 'CallResult', db_column = 'icontact_result_code_id') campaign = models.ForeignKey ( 'campaign', db_column = 'icampaign_id') CALLTYPE = models.ForeignKey ( 'CALLTYPE', db_column = 'icall_type_id') agent = models.BooleanField (db_column = 'bagent', default = true) teamLeader = models.BooleanField (db_column = 'bTeamLeader', default = true) active = models.BooleanField (db_column = Django.form...
Read more

html - CSS autoheight, but fit content to height of div -

I have a div in which there are three children- div in the left and middle div: float: left while true: float: true because it is my layout Actually will spoil, I've used ClearFix Hack: .cf {zoom: 1; }. Cf: First,. Cf: {content: ""; Display: Table; }. Cf: After {clear: both; } It still works, but I want to be the right div an indicator. So it should fill 100% of the parent unit of height. How can I complete this? PS is the full code: & Lt; / Div & gt; & Lt; Div class = "mobile_content" & gt; & Lt; H5 & gt; {{Data.titel}} & lt; / H5> & Lt; Table & gt; & Lt; TR & gt; & Lt; Th & gt; Komponist: & lt; / Th & gt; & Lt; TD & gt; {{Data.komponist}} & lt; / TD & gt; & Lt; / TR & gt; & Lt; TR & gt; & Lt; Th & gt; Instrument: & lt; / Th & gt; & Lt; TD & gt; {{Data.instrumente}} & lt; / TD & gt; & Lt; / TR & gt;...
Read more

qt - How to prevent QAudioInput from automatically boosting the master volume to 100%? -

I have been trying to use Qt5 multimedia to record audio with QAudioInput, however, when I see If QAudioInput is started, it increases the master volume of my sound device to 100%. How can I prevent QAudioInput from changing the master volume? My current development platform is Linux with PalsAdio (with flat audio disabled). How can I use QAudioInput : QAudioDeviceInfo device_info = QAudioDeviceInfo :: defaultInputDevice (); QAudio format format; Format.setSampleRate (44100); Format.setChannelCount (1); Format.setSampleSize (16); Format.setCodec ("Audio / PCM"); Format.setSampleType (QAudioFormat :: SignedInt); Format.setByteOrder (QAudioFormat :: LittleEndian); Std :: cout & lt; & Lt; Device_info.deviceName (). ToUtf8 (). ConstData () & lt; & Lt; Std :: endl; QAudioInput * default_device = new QAudioInput (device_info, format); QIODevice * default_io_device = default_device-> Start (); a QAudioInput.setVolume () method is not you I ...
Read more