PHP BLOG - somo la 11: Jinsi ya kutumia prepared statement

Katika somo hili utajifnza jinsi ya kufanya prepared statement kama njia ya kuzuia sql ingection kwenye PHP blog

Ili kuweza kuelewa vyema post hii tafadhali rejea mafunzo yetu ya php level 3 somo la 21 na 22 [1] utajifunza kwa urefu zaidi kuhusu sql injection na jinsi inavyofanya kazi. Kisha ndipo utajifunza jinsi ya kuzuia kwa kutumia prepared statement.

Pia ejea mafunzo haya kwa njia ya video kwenye channel yeu inayopatikana kwa jina la tehama-tz kwa link hii https://youtube.com/@tehama-tz

Hapa chini nitakuletea mafaili yaliyobadilishwa baada ya kyfanyiwa njia hii:

post.php

<html>
<head>
<title>create your post</title>
<meta name="viewport" content="width=device-width, initial-scale=1">
<script src="https://cdn.ckeditor.com/4.16.2/standard/ckeditor.js"></script>
<script src="ckeditor.js"></script>
<link rel="stylesheet" href="style.css">
</head>
<body>
<form action="" method="post" enctype="multipart/form-data">
<label for="title">Title</label><br>
<input type="text" name="title" placeholder="write your post title" id="title"><br>

<label for="summary">Summary</label><br>
<input type="text" name="summary" placeholder="write your post summary" id="summary"><br>

<label for="content">content</label><br>
<textarea name="content" id="content" placeholder="wrte your post content"></textarea>
<script>CKEDITOR.replace( 'content' );
</script>
<label for="publisher">publisher</label><br>
<input type="text" name="publisher" placeholder="write your post publisher" id="publisher"><br>

<label for="date">Date</label><br>
<input type="date" name="date" placeholder="write your post date" id="date"><br><br>

<label for="image">upload your image</label>
<input type="file" name="file" accept="image/*" id="image"><br><br>

<input type="submit" name="submit" value="submit">
</form>
<br><br>
</body>
</html>
<?php
include "config.php";
if (isset($_POST['submit'])) {
//start code
// form variables
$title = filter_var($_POST['title'], FILTER_SANITIZE_STRING);
$summary = filter_var($_POST['summary'], FILTER_SANITIZE_STRING);
$content = $_POST['content'];
$publisher = filter_var($_POST['publisher'], FILTER_SANITIZE_STRING);
$date = filter_var($_POST['date'], FILTER_SANITIZE_STRING);
$image = filter_var($_FILES['file']['name'], FILTER_SANITIZE_STRING);
$folder = "upload/";
$location = $_FILES['file']['tmp_name'];
$size = $_FILES['file']['size']; //1024 = 1kb, 1024 kb = 1mb, 1024 = 1 gb 5*1024*1024 = 5242880">...

Jiunge nasi WhatsApp kupata update zetu

Jiunge nasi WhatsApp

Zoezi la Maswali

Nyuma Endelea

Umeionaje Makala hii.. ?

Nzuri Mbaya Save

Author: Rajabu

Tarehe: 2023-10-20 Topic: PHP Main: ICT File: Download PDF Views 1243

Share On:

Share follows: 0 | Unique share links followed: 0

Sponsored links
👉1 Tafasiri ya Riyadh Swalihina 👉2 Bongolite - Game zone - Play free game 👉3 Dua za Mitume na Manabii 👉4 Simulizi za Hadithi Audio 👉5 kitabu cha Simulizi 👉6 Madrasa kiganjani

PHP BLOG - somo la 11: Jinsi ya kutumia prepared statement

Post zinazofanana:

PHP -somo la 31: Matumizi ya include() na require() function kwenye php

PHP - somo la 10: Jinsi ya kundika condition statement if, ifelse na switch case

PHP somo la 91: Mambo ya kuzingatia unapokuwa unashughulika na data za json

PHP somo la 65: Jinsi ya kusoma data kwenye database kwa kutumia PDO

PHP somo la 84: Maana ya JSON na sheria za kuandika faili la json

PHP - somo la 18: Jinsi ya kusoma data kutoka kwenye database kwa kutumia PHP

PHP somo la 102: Cron job

PHP - somo la 35: Jinsi ya ku upload mafaili kwa kutumia PHP

PHP - somo la 23: Jinsi ya kutumia condition statement kwenye database kwa kutumia PHP

PHP somo la 92: Jinsi ya kuunganisha php na database ya sqlite