Member 13976473 Ответов: 2

Когда я ставлю заголовок, тему, изображение и нажимаю кнопку Отправить, ничего не происходит


ièm begginer пожалуйста мне нужна помощь !!!

Что я уже пробовал:

<!DOCTYPE html>


	

	tinyMCE.init({
		// General options
		mode : "textareas",
		theme : "advanced",
		plugins : "autolink,lists,pagebreak,style,layer,table,save,advhr,advimage,advlink,emotions,iespell,inlinepopups,insertdatetime,preview,media,searchreplace,print,contextmenu,paste,directionality,fullscreen,noneditable,visualchars,nonbreaking,xhtmlxtras,template,wordcount,advlist,autosave,visualblocks",

		// Theme options
		theme_advanced_buttons1 : "save,newdocument,|,bold,italic,underline,strikethrough,|,justifyleft,justifycenter,justifyright,justifyfull,styleselect,formatselect,fontselect,fontsizeselect",
		theme_advanced_buttons2 : "cut,copy,paste,pastetext,pasteword,|,search,replace,|,bullist,numlist,|,outdent,indent,blockquote,|,undo,redo,|,link,unlink,anchor,image,cleanup,help,code,|,insertdate,inserttime,preview,|,forecolor,backcolor",
		theme_advanced_buttons3 : "tablecontrols,|,hr,removeformat,visualaid,|,sub,sup,|,charmap,emotions,iespell,media,advhr,|,print,|,ltr,rtl,|,fullscreen",
		theme_advanced_buttons4 : "insertlayer,moveforward,movebackward,absolute,|,styleprops,|,cite,abbr,acronym,del,ins,attribs,|,visualchars,nonbreaking,template,pagebreak,restoredraft,visualblocks",
		theme_advanced_toolbar_location : "top",
		theme_advanced_toolbar_align : "left",
		theme_advanced_statusbar_location : "bottom",
		theme_advanced_resizing : true,

		// Example content CSS (should be your site CSS)
		content_css : "css/content.css",

		// Drop lists for link/image/media/template dialogs
		template_external_list_url : "lists/template_list.js",
		external_link_list_url : "lists/link_list.js",
		external_image_list_url : "lists/image_list.js",
		media_external_list_url : "lists/media_list.js",

		// Style formats
		style_formats : [
			{title : 'Bold text', inline : 'b'},
			{title : 'Red text', inline : 'span', styles : {color : '#ff0000'}},
			{title : 'Red header', block : 'h1', styles : {color : '#ff0000'}},
			{title : 'Example 1', inline : 'span', classes : 'example1'},
			{title : 'Example 2', inline : 'span', classes : 'example2'},
			{title : 'Table styles'},
			{title : 'Table row 1', selector : 'tr', classes : 'tablerow1'}
		],

		// Replace values for the template plugin
		template_replace_values : {
			username : "Some User",
			staffid : "991234"
		}
	});



<?php
date_default_timezone_set('africa/algiers');
if(isset($_POST['submit']) && !empty($_FILES)){

	$formok=TRUE;
	$title=$_POST['title'];
	$thread=$_POST['elm1'];
	$date=date("d/m/y h:i:s");

	$path=$_FILES['upload']['tmp_name'];
	$name=$_FILES['upload']['name'];
	$size=$_FILES['upload']['size'];
	$type=$_FILES['upload']['type'];
	$error=$_FILES['upload']['error'];

 
	if(!is_uploaded_file($path)){
		$formo=FALSE;
		echo "no file up,try again";
	}
if(!in_array($type,array('image/png','image/jpg','image/jpeg','image/gif'))){
	$formok=FALSE;
	echo "the file is not image,try again";
}
if(filesize($path)>800000){
	$formok=FALSE;
	echo "the file isbig,try again";
}

if($formok){
	if($connect=mysqli_connect('localhost','root','','php')){
		$content=file_get_contents($path);
		$safetitle=mysqli_real_escape_string($connect,$title);
		$safethread=mysqli_real_escape_string($connect,$thread);
		$safeimage=mysqli_real_escape_string($connect,$content);

		$sqltitle="INSERT INTO title(title) VALUES('$safetitle')";
		$sqltitle="INSERT INTO title(topic,date) VALUES('$safethread','$date')";
		$sqltitle="INSERT INTO title(name,size,type,content) VALUES('$name','$size','$type','$safeimage')";

		$querytitle=mysqli_query($connect,$sqltitle);
		$querythread=mysqli_query($connect,$sqlthread);
		$queryimage=mysqli_query($connect,$sqlimage);
    }

		if($querytitle && $querythread &&$queryimage){
			$imageid=mysqli_insert_id($connect);
		}
		 
else {echo "there is an errors in DB";}

echo "the insert has done"; 
  
   }
 }


?>
<!-- TinyMCE -->



	
		<p>TITLE:<br><br> </p>
		<div>ENTER THE TOPIC:<br><br> </div>
		<p></p>
		<p></p>
	








<!DOCTYPE html>


	

	tinyMCE.init({
		// General options
		mode : "textareas",
		theme : "advanced",
		plugins : "autolink,lists,pagebreak,style,layer,table,save,advhr,advimage,advlink,emotions,iespell,inlinepopups,insertdatetime,preview,media,searchreplace,print,contextmenu,paste,directionality,fullscreen,noneditable,visualchars,nonbreaking,xhtmlxtras,template,wordcount,advlist,autosave,visualblocks",

		// Theme options
		theme_advanced_buttons1 : "save,newdocument,|,bold,italic,underline,strikethrough,|,justifyleft,justifycenter,justifyright,justifyfull,styleselect,formatselect,fontselect,fontsizeselect",
		theme_advanced_buttons2 : "cut,copy,paste,pastetext,pasteword,|,search,replace,|,bullist,numlist,|,outdent,indent,blockquote,|,undo,redo,|,link,unlink,anchor,image,cleanup,help,code,|,insertdate,inserttime,preview,|,forecolor,backcolor",
		theme_advanced_buttons3 : "tablecontrols,|,hr,removeformat,visualaid,|,sub,sup,|,charmap,emotions,iespell,media,advhr,|,print,|,ltr,rtl,|,fullscreen",
		theme_advanced_buttons4 : "insertlayer,moveforward,movebackward,absolute,|,styleprops,|,cite,abbr,acronym,del,ins,attribs,|,visualchars,nonbreaking,template,pagebreak,restoredraft,visualblocks",
		theme_advanced_toolbar_location : "top",
		theme_advanced_toolbar_align : "left",
		theme_advanced_statusbar_location : "bottom",
		theme_advanced_resizing : true,

		// Example content CSS (should be your site CSS)
		content_css : "css/content.css",

		// Drop lists for link/image/media/template dialogs
		template_external_list_url : "lists/template_list.js",
		external_link_list_url : "lists/link_list.js",
		external_image_list_url : "lists/image_list.js",
		media_external_list_url : "lists/media_list.js",

		// Style formats
		style_formats : [
			{title : 'Bold text', inline : 'b'},
			{title : 'Red text', inline : 'span', styles : {color : '#ff0000'}},
			{title : 'Red header', block : 'h1', styles : {color : '#ff0000'}},
			{title : 'Example 1', inline : 'span', classes : 'example1'},
			{title : 'Example 2', inline : 'span', classes : 'example2'},
			{title : 'Table styles'},
			{title : 'Table row 1', selector : 'tr', classes : 'tablerow1'}
		],

		// Replace values for the template plugin
		template_replace_values : {
			username : "Some User",
			staffid : "991234"
		}
	});



<?php
date_default_timezone_set('africa/algiers');
if(isset($_POST['submit']) && !empty($_FILES)){

	$formok=TRUE;
	$title=$_POST['title'];
	$thread=$_POST['elm1'];
	$date=date("d/m/y h:i:s");

	$path=$_FILES['upload']['tmp_name'];
	$name=$_FILES['upload']['name'];
	$size=$_FILES['upload']['size'];
	$type=$_FILES['upload']['type'];
	$error=$_FILES['upload']['error'];

 
	if(!is_uploaded_file($path)){
		$formo=FALSE;
		echo "no file up,try again";
	}
if(!in_array($type,array('image/png','image/jpg','image/jpeg','image/gif'))){
	$formok=FALSE;
	echo "the file is not image,try again";
}
if(filesize($path)>800000){
	$formok=FALSE;
	echo "the file isbig,try again";
}

if($formok){
	if($connect=mysqli_connect('localhost','root','','php')){
		$content=file_get_contents($path);
		$safetitle=mysqli_real_escape_string($connect,$title);
		$safethread=mysqli_real_escape_string($connect,$thread);
		$safeimage=mysqli_real_escape_string($connect,$content);

		$sqltitle="INSERT INTO title(title) VALUES('$safetitle')";
		$sqltitle="INSERT INTO title(topic,date) VALUES('$safethread','$date')";
		$sqltitle="INSERT INTO title(name,size,type,content) VALUES('$name','$size','$type','$safeimage')";

		$querytitle=mysqli_query($connect,$sqltitle);
		$querythread=mysqli_query($connect,$sqlthread);
		$queryimage=mysqli_query($connect,$sqlimage);
    }

		if($querytitle && $querythread &&$queryimage){
			$imageid=mysqli_insert_id($connect);
		}
		 
else {echo "there is an errors in DB";}

echo "the insert has done"; 
  
   }
 }


?>
<!-- TinyMCE -->



	
		<p>TITLE:<br><br> </p>
		<div>ENTER THE TOPIC:<br><br> </div>
		<p></p>
		<p></p>
	











<!DOCTYPE html>


	

	tinyMCE.init({
		// General options
		mode : "textareas",
		theme : "advanced",
		plugins : "autolink,lists,pagebreak,style,layer,table,save,advhr,advimage,advlink,emotions,iespell,inlinepopups,insertdatetime,preview,media,searchreplace,print,contextmenu,paste,directionality,fullscreen,noneditable,visualchars,nonbreaking,xhtmlxtras,template,wordcount,advlist,autosave,visualblocks",

		// Theme options
		theme_advanced_buttons1 : "save,newdocument,|,bold,italic,underline,strikethrough,|,justifyleft,justifycenter,justifyright,justifyfull,styleselect,formatselect,fontselect,fontsizeselect",
		theme_advanced_buttons2 : "cut,copy,paste,pastetext,pasteword,|,search,replace,|,bullist,numlist,|,outdent,indent,blockquote,|,undo,redo,|,link,unlink,anchor,image,cleanup,help,code,|,insertdate,inserttime,preview,|,forecolor,backcolor",
		theme_advanced_buttons3 : "tablecontrols,|,hr,removeformat,visualaid,|,sub,sup,|,charmap,emotions,iespell,media,advhr,|,print,|,ltr,rtl,|,fullscreen",
		theme_advanced_buttons4 : "insertlayer,moveforward,movebackward,absolute,|,styleprops,|,cite,abbr,acronym,del,ins,attribs,|,visualchars,nonbreaking,template,pagebreak,restoredraft,visualblocks",
		theme_advanced_toolbar_location : "top",
		theme_advanced_toolbar_align : "left",
		theme_advanced_statusbar_location : "bottom",
		theme_advanced_resizing : true,

		// Example content CSS (should be your site CSS)
		content_css : "css/content.css",

		// Drop lists for link/image/media/template dialogs
		template_external_list_url : "lists/template_list.js",
		external_link_list_url : "lists/link_list.js",
		external_image_list_url : "lists/image_list.js",
		media_external_list_url : "lists/media_list.js",

		// Style formats
		style_formats : [
			{title : 'Bold text', inline : 'b'},
			{title : 'Red text', inline : 'span', styles : {color : '#ff0000'}},
			{title : 'Red header', block : 'h1', styles : {color : '#ff0000'}},
			{title : 'Example 1', inline : 'span', classes : 'example1'},
			{title : 'Example 2', inline : 'span', classes : 'example2'},
			{title : 'Table styles'},
			{title : 'Table row 1', selector : 'tr', classes : 'tablerow1'}
		],

		// Replace values for the template plugin
		template_replace_values : {
			username : "Some User",
			staffid : "991234"
		}
	});



<?php
date_default_timezone_set('africa/algiers');
if(isset($_POST['submit']) && !empty($_FILES)){

	$formok=TRUE;
	$title=$_POST['title'];
	$thread=$_POST['elm1'];
	$date=date("d/m/y h:i:s");

	$path=$_FILES['upload']['tmp_name'];
	$name=$_FILES['upload']['name'];
	$size=$_FILES['upload']['size'];
	$type=$_FILES['upload']['type'];
	$error=$_FILES['upload']['error'];

 
	if(!is_uploaded_file($path)){
		$formo=FALSE;
		echo "no file up,try again";
	}
if(!in_array($type,array('image/png','image/jpg','image/jpeg','image/gif'))){
	$formok=FALSE;
	echo "the file is not image,try again";
}
if(filesize($path)>800000){
	$formok=FALSE;
	echo "the file isbig,try again";
}

if($formok){
	if($connect=mysqli_connect('localhost','root','','php')){
		$content=file_get_contents($path);
		$safetitle=mysqli_real_escape_string($connect,$title);
		$safethread=mysqli_real_escape_string($connect,$thread);
		$safeimage=mysqli_real_escape_string($connect,$content);

		$sqltitle="INSERT INTO title(title) VALUES('$safetitle')";
		$sqltitle="INSERT INTO title(topic,date) VALUES('$safethread','$date')";
		$sqltitle="INSERT INTO title(name,size,type,content) VALUES('$name','$size','$type','$safeimage')";

		$querytitle=mysqli_query($connect,$sqltitle);
		$querythread=mysqli_query($connect,$sqlthread);
		$queryimage=mysqli_query($connect,$sqlimage);
    }

		if($querytitle && $querythread &&$queryimage){
			$imageid=mysqli_insert_id($connect);
		}
		 
else {echo "there is an errors in DB";}

echo "the insert has done"; 
  
   }
 }


?>
<!-- TinyMCE -->



	
		<p>TITLE:<br><br> </p>
		<div>ENTER THE TOPIC:<br><br> </div>
		<p></p>
		<p></p>
	














	

	tinyMCE.init({
		// General options
		mode : "textareas",
		theme : "advanced",
		plugins : "autolink,lists,pagebreak,style,layer,table,save,advhr,advimage,advlink,emotions,iespell,inlinepopups,insertdatetime,preview,media,searchreplace,print,contextmenu,paste,directionality,fullscreen,noneditable,visualchars,nonbreaking,xhtmlxtras,template,wordcount,advlist,autosave,visualblocks",

		// Theme options
		theme_advanced_buttons1 : "save,newdocument,|,bold,italic,underline,strikethrough,|,justifyleft,justifycenter,justifyright,justifyfull,styleselect,formatselect,fontselect,fontsizeselect",
		theme_advanced_buttons2 : "cut,copy,paste,pastetext,pasteword,|,search,replace,|,bullist,numlist,|,outdent,indent,blockquote,|,undo,redo,|,link,unlink,anchor,image,cleanup,help,code,|,insertdate,inserttime,preview,|,forecolor,backcolor",
		theme_advanced_buttons3 : "tablecontrols,|,hr,removeformat,visualaid,|,sub,sup,|,charmap,emotions,iespell,media,advhr,|,print,|,ltr,rtl,|,fullscreen",
		theme_advanced_buttons4 : "insertlayer,moveforward,movebackward,absolute,|,styleprops,|,cite,abbr,acronym,del,ins,attribs,|,visualchars,nonbreaking,template,pagebreak,restoredraft,visualblocks",
		theme_advanced_toolbar_location : "top",
		theme_advanced_toolbar_align : "left",
		theme_advanced_statusbar_location : "bottom",
		theme_advanced_resizing : true,

		// Example content CSS (should be your site CSS)
		content_css : "css/content.css",

		// Drop lists for link/image/media/template dialogs
		template_external_list_url : "lists/template_list.js",
		external_link_list_url : "lists/link_list.js",
		external_image_list_url : "lists/image_list.js",
		media_external_list_url : "lists/media_list.js",

		// Style formats
		style_formats : [
			{title : 'Bold text', inline : 'b'},
			{title : 'Red text', inline : 'span', styles : {color : '#ff0000'}},
			{title : 'Red header', block : 'h1', styles : {color : '#ff0000'}},
			{title : 'Example 1', inline : 'span', classes : 'example1'},
			{title : 'Example 2', inline : 'span', classes : 'example2'},
			{title : 'Table styles'},
			{title : 'Table row 1', selector : 'tr', classes : 'tablerow1'}
		],

		// Replace values for the template plugin
		template_replace_values : {
			username : "Some User",
			staffid : "991234"
		}
	});



800000){
	$formok=FALSE;
	echo "the file isbig,try again";
}

if($formok){
	if($connect=mysqli_connect('localhost','root','','php')){
		$content=file_get_contents($path);
		$safetitle=mysqli_real_escape_string($connect,$title);
		$safethread=mysqli_real_escape_string($connect,$thread);
		$safeimage=mysqli_real_escape_string($connect,$content);

		$sqltitle="INSERT INTO title(title) VALUES('$safetitle')";
		$sqltitle="INSERT INTO title(topic,date) VALUES('$safethread','$date')";
		$sqltitle="INSERT INTO title(name,size,type,content) VALUES('$name','$size','$type','$safeimage')";

		$querytitle=mysqli_query($connect,$sqltitle);
		$querythread=mysqli_query($connect,$sqlthread);
		$queryimage=mysqli_query($connect,$sqlimage);
    }

		if($querytitle && $querythread &&$queryimage){
			$imageid=mysqli_insert_id($connect);
		}
		 
else {echo "there is an errors in DB";}

echo "the insert has done"; 
  
   }
 }


?>




	"  method="post" enctype="multipart/form-data">
		TITLE: 
		ENTER THE TOPIC: 
		
		
	










<!DOCTYPE html>
<html>
<head>
	<script type="text/javascript" src="tiny/tiny_mce.js"></script>
<script type="text/javascript">
	tinyMCE.init({
		// General options
		mode : "textareas",
		theme : "advanced",
		plugins : "autolink,lists,pagebreak,style,layer,table,save,advhr,advimage,advlink,emotions,iespell,inlinepopups,insertdatetime,preview,media,searchreplace,print,contextmenu,paste,directionality,fullscreen,noneditable,visualchars,nonbreaking,xhtmlxtras,template,wordcount,advlist,autosave,visualblocks",

		// Theme options
		theme_advanced_buttons1 : "save,newdocument,|,bold,italic,underline,strikethrough,|,justifyleft,justifycenter,justifyright,justifyfull,styleselect,formatselect,fontselect,fontsizeselect",
		theme_advanced_buttons2 : "cut,copy,paste,pastetext,pasteword,|,search,replace,|,bullist,numlist,|,outdent,indent,blockquote,|,undo,redo,|,link,unlink,anchor,image,cleanup,help,code,|,insertdate,inserttime,preview,|,forecolor,backcolor",
		theme_advanced_buttons3 : "tablecontrols,|,hr,removeformat,visualaid,|,sub,sup,|,charmap,emotions,iespell,media,advhr,|,print,|,ltr,rtl,|,fullscreen",
		theme_advanced_buttons4 : "insertlayer,moveforward,movebackward,absolute,|,styleprops,|,cite,abbr,acronym,del,ins,attribs,|,visualchars,nonbreaking,template,pagebreak,restoredraft,visualblocks",
		theme_advanced_toolbar_location : "top",
		theme_advanced_toolbar_align : "left",
		theme_advanced_statusbar_location : "bottom",
		theme_advanced_resizing : true,

		// Example content CSS (should be your site CSS)
		content_css : "css/content.css",

		// Drop lists for link/image/media/template dialogs
		template_external_list_url : "lists/template_list.js",
		external_link_list_url : "lists/link_list.js",
		external_image_list_url : "lists/image_list.js",
		media_external_list_url : "lists/media_list.js",

		// Style formats
		style_formats : [
			{title : 'Bold text', inline : 'b'},
			{title : 'Red text', inline : 'span', styles : {color : '#ff0000'}},
			{title : 'Red header', block : 'h1', styles : {color : '#ff0000'}},
			{title : 'Example 1', inline : 'span', classes : 'example1'},
			{title : 'Example 2', inline : 'span', classes : 'example2'},
			{title : 'Table styles'},
			{title : 'Table row 1', selector : 'tr', classes : 'tablerow1'}
		],

		// Replace values for the template plugin
		template_replace_values : {
			username : "Some User",
			staffid : "991234"
		}
	});
</script>
</head>
<body>
<?php
date_default_timezone_set('africa/algiers');
if(isset($_POST['submit']) && !empty($_FILES)){

	$formok=TRUE;
	$title=$_POST['title'];
	$thread=$_POST['elm1'];
	$date=date("d/m/y h:i:s");

	$path=$_FILES['upload']['tmp_name'];
	$name=$_FILES['upload']['name'];
	$size=$_FILES['upload']['size'];
	$type=$_FILES['upload']['type'];
	$error=$_FILES['upload']['error'];

 
	if(!is_uploaded_file($path)){
		$formo=FALSE;
		echo "no file up,try again";
	}
if(!in_array($type,array('image/png','image/jpg','image/jpeg','image/gif'))){
	$formok=FALSE;
	echo "the file is not image,try again";
}
if(filesize($path)>800000){
	$formok=FALSE;
	echo "the file isbig,try again";
}

if($formok){
	if($connect=mysqli_connect('localhost','root','','php')){
		$content=file_get_contents($path);
		$safetitle=mysqli_real_escape_string($connect,$title);
		$safethread=mysqli_real_escape_string($connect,$thread);
		$safeimage=mysqli_real_escape_string($connect,$content);

		$sqltitle="INSERT INTO title(title) VALUES('$safetitle')";
		$sqltitle="INSERT INTO title(topic,date) VALUES('$safethread','$date')";
		$sqltitle="INSERT INTO title(name,size,type,content) VALUES('$name','$size','$type','$safeimage')";

		$querytitle=mysqli_query($connect,$sqltitle);
		$querythread=mysqli_query($connect,$sqlthread);
		$queryimage=mysqli_query($connect,$sqlimage);
    }

		if($querytitle && $querythread &&$queryimage){
			$imageid=mysqli_insert_id($connect);
		}
		 
else {echo "there is an errors in DB";}

echo "the insert has done"; 
  
   }
 }


?>
<!-- TinyMCE -->



	<form action="<?php echo $PHP_SELF; ?>"  method="post" enctype="multipart/form-data">
		<p>TITLE:<br><br> <input type="text" name="title" /></p>
		<div>ENTER THE TOPIC:<br><br> <textarea id="elm1" name="elm1" rows="15" cols="80" style="width: 80%"></textarea></div>
		<p><input type="file" name="upload"></p>
		<p><input type="submit" name="submit" value="submit" /></p>
	</form>
</body>
</html>

MadMyche

Вы получаете ошибку? Публикуется ли страница; и если да, то присутствуют ли значения?

2 Ответов

Рейтинг:
2

Member 13976473

хорошо , но кнопка Отправить не работает
что я могу сделать


MadMyche

Это "решение" на самом деле должно быть комментарием к предыдущему решению.

Рейтинг:
1

Patrice T

$sqltitle="INSERT INTO title(title) VALUES('$safetitle')";
		$sqltitle="INSERT INTO title(topic,date) VALUES('$safethread','$date')";
		$sqltitle="INSERT INTO title(name,size,type,content) VALUES('$name','$size','$type','$safeimage')";

Не решение вашего вопроса, а еще одна проблема, которая у вас есть.
Никогда не создавайте SQL-запрос путем объединения строк. Рано или поздно вы сделаете это с помощью пользовательских вводов, и это откроет дверь к уязвимости под названием "SQL-инъекция", она опасна для вашей базы данных и подвержена ошибкам.
Одна кавычка в имени - и ваша программа выйдет из строя. Если пользователь вводит имя, например "Брайан О'Коннер", может привести к сбою вашего приложения, это уязвимость SQL-инъекции, и сбой-это наименьшая из проблем, вредоносный пользовательский ввод, и он продвигается к командам SQL со всеми учетными данными.
SQL-инъекция - Википедия[^]
SQL-инъекция[^]
Атаки SQL-инъекций на примере[^]
PHP: SQL-инъекция - руководство пользователя[^]
Шпаргалка по предотвращению инъекций SQL - OWASP[^]
Как я могу объяснить SQL-инъекцию без технического жаргона? - Обмен Стеками Информационной Безопасности[^]