php - PDO Statement Not Setting Values -



php - PDO Statement Not Setting Values -

i'm trying run pdo update statement, none of fields beingness updated. here pdo query. i've gone through , tried find values beingness changed , found beingness assigned nothing. found problem right when values escaped (you'll see comment placed there). know i'm overlooking haven't been able figure out yet.

if(isset($_post['submit'])) { if(isset($_post['name'])){ $name = $_post['name'];}else{ $name = '';} if(isset($_post['city'])){ $city = $_post['city'];}else{ $city = '';} if(isset($_post['state'])){ $state = $_post['state'];}else{ $state = '';} if(isset($_post['address_line1'])){ $address_line1 = $_post['address_line1'];}else{ $address_line1 = '';} if(isset($_post['address_line2'])){ $address_line2 = $_post['address_line2'];}else{ $address_line2 = '';} if(isset($_post['city'])){ $city = $_post['city'];}else{ $city = '';} if(isset($_post['state'])){ $state = $_post['state'];}else{ $state = '';} if(isset($_post['zip_code'])){ $zip_code = $_post['zip_code'];}else{ $zip_code = '';} if(isset($_post['last_modified_by'])){ $last_modified_by = $_post['last_modified_by'];}else{ $last_modified_by = 'admin';} $last_modified_date = date('y-m-d h:i:s'); $confirmcode = 'y'; if(isset($_post['bitactive'])){ $bitactive = $_post['bitactive'];}else{ $bitactive = '';} //test portion 1 = values right // echo $address_line1 . "<p>"; // echo $city . "<p>"; // echo $zip_code . "<p>"; // exit; $support_broker_id = $_get['id']; $user_exists = "select * lu_agency agency_id =". $support_broker_id; $statement = $conn->query($sql); $result = $statement->fetch(); $count = $statement->rowcount(); $name = $row['name']; $address_line1 = $row['address_line1']; $address_line2 = $row['address_line2']; $city = $row['city']; $state = $row['state']; $zip_code = $row['zip_code']; $last_modified_by = $row['last_modified_by']; $last_modified_date = $row['last_modified_date']; $bitactive = $row['bitactive']; //test portion two: values right // echo $address_line1 . "<p>"; // echo $city . "<p>"; // echo $zip_code . "<p>"; // exit; if($count > 0) { $sqlupdate = "update lu_agency set name = :name, address_line1 = :address_line1, address_line2 = :address_line2, city = :city, state = :state, zip_code = :zip_code, last_modified_by = :last_modified_by, last_modified_date = :last_modified_date, bitactive = :bitactive agency_id= ". $support_broker_id; //here $city , $support_broker_id have values, others don't show echo $address_line1 . "<p>"; echo $city . "<p>"; echo $zip_code . "<p>"; echo $support_broker_id . "<p>"; exit; $preparedstmt = $conn->prepare($sqlupdate); $preparedstmt->execute( array( ':name'=>$name, ':address_line1'=>$address_line1, ':address_line2'=>$address_line2, ':city'=>$city, ':state'=>$state, ':zip_code'=>$zip_code, ':last_modified_by'=>$last_modified_by, ':last_modified_date'=>$last_modified_date, ':bitactive'=>$bitactive ) ); header("location: http://173.254.127.52/~avenuet7/supporttables.php?msg=1"); } }

$row undefined. should $result:

$result = $statement->fetch(pdo::fetch_assoc); // declared `$result` not `$row`

and why not utilize prepared statements through out:

$user_exists = "select * lu_agency agency_id =". $support_broker_id; // still straight injecting?

final look:

$support_broker_id = $_get['id']; $user_exists = "select * lu_agency agency_id = :support_broker_id "; // not `$sql` utilize `$user_exists`! $statement = $conn->prepare($user_exists); $statement->bindparam(':support_broker_id', $support_broker_id); $statement->execute(); $count = $statement->rowcount(); if($count > 0) { $result = $statement->fetch(pdo::fetch_assoc); $sqlupdate = " update lu_agency set name = :name, address_line1 = :address_line1, address_line2 = :address_line2, city = :city, state = :state, zip_code = :zip_code, last_modified_by = :last_modified_by, last_modified_date = :last_modified_date, bitactive = :bitactive agency_id = :support_broker_id "; $preparedstmt = $conn->prepare($sqlupdate); $preparedstmt->execute( array( ':name' => $result['name'], ':address_line1' => $result['address_line1'], ':address_line2' => $result['address_line2'], ':city' => $result['city'], ':state' => $result['state'], ':zip_code' => $result['zip_code'], ':last_modified_by' => $result['last_modified_by'], ':last_modified_date' => $result['last_modified_date'], ':bitactive' => $result['bitactive'], ':support_broker_id' => $support_broker_id, )); header("location: http://173.254.127.52/~avenuet7/supporttables.php?msg=1"); }

sidenote: add together after making connection:

$conn->setattribute(pdo::attr_errmode, pdo::errmode_exception);

php mysql pdo

Comments

Post a Comment

Popular posts from this blog

Delphi change the assembly code of a running process -

Delphi change the assembly code of a running process - i'm trying alter address 00741fa5 has push test.009e721c . alter push test.009e71c8 . procedure callback; asm force $9e71c8 end; procedure tform2.btn1click(sender: tobject); var ppid :dword; pprocess : cardinal; begin getwindowthreadprocessid(findwindow(nil,pchar('test')), @ppid); pprocess := openprocess(process_all_access, false, ppid); injectasm(pprocess, $741fa5, 10, integer(@callback), 0); end; here injectasm function (with error checking) function injectasm(process: longword; injectaddress, injectsize, codeaddress, codesize : integer): pointer; var csize, rsize : integer; replaced : array of byte; jmp : array [0..4] of byte; jmpaddress : integer; nopv : byte; : integer; nbr: ulong_ptr; begin //injectsize must equal or greater 5, because need space our //(far) jmp wwxxyyzz instruction //if there's no space, inject in place of few instructions if injectsize ...
Read more

json - Hibernate and Jackson (java.lang.IllegalStateException: Cannot call sendError() after the response has been committed) -

json - Hibernate and Jackson (java.lang.IllegalStateException: Cannot call sendError() after the response has been committed) - hello have problem hibernate , jackson. have 2 pojos @entity @table(name = "users") public class user implements serializable { static final long serialversionuid = 4235637833262722256l; @id @generatedvalue private int id; @column(name = "creation_date") private date creationdate; @column(name = "first_name") private string firstname; @column(name = "last_name") private string lastname; @version @column(name = "version") private int version; @column(name = "e_mail") private string email; @column(name = "enabled") private boolean enabled; @column(name = "login") private string login; @column(name = "password") private string password; @jsonmanagedreference("role") @onetomany(mappedby = "user", cascade = cascadetype.all,fetch = fetchtyp...
Read more

C++ 11 "class" keyword -

C++ 11 "class" keyword - i've started using c++ 11 little bit more , have few questions on special uses of class keyword. know it's used declare class, there's 2 instances have seen don't understand: method<class t>(); and class class_name *var; why precede typename keyword class in first example, , keyword pointer in sec example? that known elaborated type specifier , necessary when class name "shadowed" or "hidden" , need explicit. class t { }; // love of god don't t t; t t2; if compiler smart, give these warnings: main.cpp:15:5: error: must utilize 'class' tag refer type 't' in scope t t2; ^ class main.cpp:14:7: note: class 't' hidden non-type declaration of 't' here t t; ^ if class not defined, deed forwards declaration. for example: template <typename t> void method() { using type = typename t::value_type; } method...
Read more