-3
<?php
if (isset($_POST['submit']))
{
$username=$_POST['username'];
$url=$_POST['url'];
$bank=$_POST['bank'];
$namarekening=$_POST['namarekening'];
$norekening=$_POST['norekening'];
$nohape=$_POST['nohape'];
$email=$_POST['email'];
$anda=$_POST['anda'];
mysql_query("insert into users (username,email,namarekening,norekening,nohape,anda,url,bank)
values('$username','$email','$namarekening','$norekening','$nohape','$anda','$url','$bank')
")or die(mysql_error());
?>
<script>alert('Successfully Registered!'); window.location = 'pesarta.php';</script>"
<?php
}
?>
這是我的代碼「待定」的值,任何想法,我應該怎麼做,我讓表3列號,網址,另一個是狀態。我想,如果他們發送,它會自動填滿狀態表未決..我想讓我的表格,當他們發送,它會自動顯示在表
[你的腳本是SQL注入攻擊的風險。](http://stackoverflow.com/questions/60174/how-can-i-prevent-sql-injection-in-php) –
請[停止使用'mysql_ *'函數](http: //stackoverflow.com/questions/12859942/why-shouldnt-i-use-mysql-functions-in-php)。 [這些擴展](http://php.net/manual/en/migration70.removed-exts-sapis.php)已在PHP 7中刪除。瞭解[編寫](http://en.wikipedia.org/ wiki/Prepared_statement)語句[PDO](http://php.net/manual/en/pdo.prepared-statements.php)和[MySQLi](http://php.net/manual/en/mysqli.quickstart .prepared-statements.php)並考慮使用PDO,[這真的很簡單](http://jayblanchard.net/demystifying_php_pdo.html)。 –