baran17862
سه شنبه 25 آذر 1393, 18:38 عصر
با سلام
با توجه به کد زیر :
<?
session_start (http://www.php.net/session_start)();
include ("config.php");
$errmsg_arr = array (http://www.php.net/array)();
$errflag = false;
function clean($str) {
$str = @trim (http://www.php.net/trim)($str);
if(get_magic_quotes_gpc (http://www.php.net/get_magic_quotes_gpc)()) {
$str = stripslashes (http://www.php.net/stripslashes)($str);
}
return mysql_real_escape_string (http://www.php.net/mysql_real_escape_string)($str);
}
$usern = clean($_POST['usern']);
$password = clean($_POST['password']);
if($usern == '') {
$errmsg_arr[] = 'نام کاربری اشتباه است';
$errflag = true;
}
if($password == '') {
$errmsg_arr[] = 'پسورد اشتباه است';
$errflag = true;
}
if($errflag) {
$_SESSION['ERRMSG_ARR'] = $errmsg_arr;
session_write_close (http://www.php.net/session_write_close)();
header (http://www.php.net/header)("location: admin.php");
exit (http://www.php.net/exit)();
}
$qry="SELECT * FROM blogs WHERE usern='$usern' AND passw='".md5 (http://www.php.net/md5)($_POST['password'])."'";
$result=mysqli_query (http://www.php.net/mysqli_query)($link,$qry);
if($result) {
if(mysqli_num_rows (http://www.php.net/mysqli_num_rows)($result) == 1) {
session_regenerate_id (http://www.php.net/session_regenerate_id)();
$member = mysqli_fetch_assoc (http://www.php.net/mysqli_fetch_assoc)($result);
$_SESSION['SESS_id'] = $member['id'];
$_SESSION['SESS_FIRST_NAME'] = $member['btitle'];
$_SESSION['SESS_LAST_NAME'] = $member['bdesc'];
session_write_close (http://www.php.net/session_write_close)();
header (http://www.php.net/header)("location: member-index.php");
exit (http://www.php.net/exit)();
}else {
header (http://www.php.net/header)("location: login-failed.php");
exit (http://www.php.net/exit)();
}
}else {
die (http://www.php.net/die)("Query failed");
}
?>
در خط 11 به جای این کد چی باید نوشت برای mysqli ?????
با توجه به کد زیر :
<?
session_start (http://www.php.net/session_start)();
include ("config.php");
$errmsg_arr = array (http://www.php.net/array)();
$errflag = false;
function clean($str) {
$str = @trim (http://www.php.net/trim)($str);
if(get_magic_quotes_gpc (http://www.php.net/get_magic_quotes_gpc)()) {
$str = stripslashes (http://www.php.net/stripslashes)($str);
}
return mysql_real_escape_string (http://www.php.net/mysql_real_escape_string)($str);
}
$usern = clean($_POST['usern']);
$password = clean($_POST['password']);
if($usern == '') {
$errmsg_arr[] = 'نام کاربری اشتباه است';
$errflag = true;
}
if($password == '') {
$errmsg_arr[] = 'پسورد اشتباه است';
$errflag = true;
}
if($errflag) {
$_SESSION['ERRMSG_ARR'] = $errmsg_arr;
session_write_close (http://www.php.net/session_write_close)();
header (http://www.php.net/header)("location: admin.php");
exit (http://www.php.net/exit)();
}
$qry="SELECT * FROM blogs WHERE usern='$usern' AND passw='".md5 (http://www.php.net/md5)($_POST['password'])."'";
$result=mysqli_query (http://www.php.net/mysqli_query)($link,$qry);
if($result) {
if(mysqli_num_rows (http://www.php.net/mysqli_num_rows)($result) == 1) {
session_regenerate_id (http://www.php.net/session_regenerate_id)();
$member = mysqli_fetch_assoc (http://www.php.net/mysqli_fetch_assoc)($result);
$_SESSION['SESS_id'] = $member['id'];
$_SESSION['SESS_FIRST_NAME'] = $member['btitle'];
$_SESSION['SESS_LAST_NAME'] = $member['bdesc'];
session_write_close (http://www.php.net/session_write_close)();
header (http://www.php.net/header)("location: member-index.php");
exit (http://www.php.net/exit)();
}else {
header (http://www.php.net/header)("location: login-failed.php");
exit (http://www.php.net/exit)();
}
}else {
die (http://www.php.net/die)("Query failed");
}
?>
در خط 11 به جای این کد چی باید نوشت برای mysqli ?????