Member Avatar for SCoder1

Hi when let me get straight to the point .....

I've made a database, inserted data into it and selected it on a page but I can't find out why I can't view the text in the table?????????????? :@ I'M SO PISSED OFF!!!!!!!!!

I've been trying it for hours here's my code

//Code for forms data (it's kinda like a mock E-bay sight :))

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>Administrator's Page</title>
<link rel="stylesheet" href="style.php" type="text/css" />
</script>
</head>
<body>
<h1 align="center"> Welcome to the administrators page!</h1>
<h5 align="center">Add items to Inventory....</h5>
<hr />
<!-- LINKS START -->
<a href="Shauns_Room_Sale.php">Home</a> |
<a href="Browse.php">Browse Items</a>  |
<a href="Suggestions.php">Suggestions Toward Site</a> |
<a href="Order.php">Order an Item</a>
<a href="admin.php">Admin's Only</a>
<!-- LINKS END -->

<table border="0">
<tr>
<?php 
$week = date("l");

$Month_day_year = date("F, d, Y");
echo "<td>";
echo "<h3>Today is </h3> " . $week ." ". $Month_day_year;  
echo "</td>";
?>
<td>
<form action="add.php" method="POST">
<fieldset> 
<legend>Items to add to database</legend>

 Item Name:  <input type="text" name="item" />
 <br />
Item Description: <input type="text" name="description" />
<br />
Item Price:<input type="text" name="price" />

<input type="Submit" value="Submit" /> <input type="Reset" value="Clear Fields" />
</fieldset>
</form>
</td>
</tr>
</table>
</body>
</html>
//now starts WHAT I CAN'T SEEM TO FIND OUT the server side scripting....
<a href="page_pass.php">Back to admin page</a>&nbsp; | &nbsp;<a href="Shauns_Room_Sale.php" >Home</a>

<?php 
$con = mysql_connect("localhost", "root", "");

mysql_select_db("inventory_db", $con);

if (!$con)
  {
  die('Could not connect: ' . mysql_error());
  }

mysql_select_db("inventory_db", $con);

$sql="INSERT INTO item_inventory ()
VALUES
('$_POST[item]','$_POST[description]','$_POST[price]')";

if (!mysql_query($sql,$con))
  {
  die('Error: ' . mysql_error());
  }
echo "<h1 align='center'>1 record added</h1>";

mysql_close($con)
?>

I do apologize if I confuse someone but can anyone help?

...Oh yeah I'm using XXAMP and phpmyadmin if that helps finding the problem

Edited by SCoder1 because: forgot something
  • 3 Contributors
  • 5 Replies
  • 84 Views
  • 23 Hours Discussion Span
  • Latest Post Latest Post by diafol
Member Avatar for SCoder1

Do I not know how to use phpmyadmin or something?

Edited by SCoder1 because: n/a
Member Avatar for JRM

This line has a () that are probably killing the query

$sql="INSERT INTO item_inventory ()
VALUES
('$_POST[item]','$_POST[description]','$_POST[price]')";

BTW, doing raw POST inserts from users is asking for for trouble. See sql exploits...

Member Avatar for SCoder1

I changed the "()" but nothing is shown in the table record ???

When I go to add the record in it adds it to the database in phpmyadmin but i can't view it in my web table ????????

Edited by SCoder1 because: n/a
Member Avatar for JRM

The query syntax is incorrect. See MySql insert syntax on their site.

Member Avatar for diafol

If this code is all on one page - it's totally mashed - I don't know where to begin. You have html code below the html tag. You say the info has been added to the DB - but you seem to be sending form data to the same page for handling - not recommended, as your db add code will run when the form is simply displayed, not just sent.

To view the stored data in a html table/form fields, you need a SELECT query, which you don't seem to have.

If on the other hand, you can't insert data into a MySQL table - your SQL statement is a little mashed too.

$sql="INSERT INTO item_inventory ()
VALUES
('$_POST[item]','$_POST[description]','$_POST[price]')";

If you're going to do it like this, list your fields before 'VALUES' and sanitize your input:

$item = mysql_real_escape_string($_POST['item']);
...(etc)...
$sql="INSERT INTO item_inventory (item, description,price) VALUES ('$item','$description','$price')";
Edited by diafol because: n/a
Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.