I need a simple script to do the following...
a form that a zipcode is entered into and when subbmitted returns the results matching the field zipid. Here is what I have but I can not get it to work...
FORM
zipid
Search database:
script
zipid
cname
phone
zip
<? $hostname = "localhost"; // The Thinkhost DB server.
$username = "**********"; // The username you created for this database.
$password = "*******"; // The password you created for the username.
$usertable = "*********"; // The name of the table you made.
$dbName = "*********"; // This is the name of the database you made.
MYSQL_CONNECT($hostname, $username, $password) OR DIE("DB connection unavailable");
@mysql_select_db( "$dbName") or die( "Unable to select database");
?>
<?
//error message (not found message)begins
$XX = "No Record Found, to search again please close this window";
//query details table begins
$query = mysql_query("SELECT * FROM $usertable WHERE $metode LIKE '%'search'%' LIMIT 0, 50");
while ($row = @mysql_fetch_array($query))
{
$variable1=$row["zipid"];
$variable2=$row["cname"];
$variable3=$row["phone"];
$variable4=$row["zip"];
//table layout for results
print ("");
print ("$variable1");
print ("$variable2");
print ("$variable3");
print ("$variable4");
print ("");
}
//below this is the function for no record!!
if (!$variable1)
{
print ("$XX");
}
//end
?>
A couple of things I note, while not being a PHP programmer.
You should try to use placeholders when doing any SELECT based on user input to avoid SQL Injection attacks. If you don't know what that is look it up.
I assume that you are using the real user and password to log in?
And what do you mean by '..can not get it to work'?
