php - Saving Filepath Of Uploaded Image To MySQL Database -
i have gone through countless different menus , topics , still having problems. want insert filepath of uploaded image mysql database. have tried passing image on variable , using query push database not working. code below, form on top, php below:
<html> <body> <h1>test</h1> <form action="insert.php" method="post" enctype="multipart/form-data"> name <input type="text" name="name" /><br><br> description <input type="text" name="desc" /><br><br> price low<input type="text" name="price_low" /><br><br> price high <input type="text" name="price_high" /><br><br> <input type="hidden" name="max_file_size" value="512000" /> 3.send file: <input name="userfile" type="file" /> 4.<input type="submit" value="send file" / <input type="submit" /> </form> </body> </html> <html> <?php //upload image $uploaddir = ''; $uploadfile = $uploaddir . basename($_files['userfile']['name']); //end of upload image if (move_uploaded_file($_files['userfile']['tmp_name'], $uploadfile)) { echo "file valid, , uploaded.\n"; } else { echo "upload failed"; } $con = mysql_connect("localhost","admintest","gen"); if (!$con) { die('could not connect: ' . mysql_error()); } mysql_select_db("test2", $con); $sql="insert products (name, description, price_low, price_high) values ('$_post[name]','$_post[desc]','$_post[price_low]','$_post[price_high]')"; if (!mysql_query($sql,$con)) { die('error: ' . mysql_error()); } echo "1 record added"; mysql_close($con) ?> </body>
security issues , deprecated extension aside, need insert file name database. that, add "filename" field database , adjust insert query accordingly:
insert products (name, description, price_low, price_high, filename) values (:name, :desc, :price_low, :price_high, :filename) also, $uploaddir variable empty, files aren't being saved anywhere @ moment. move files properly, try this:
$uploaddir = '/path/where/you/can/save/'; $rawfilename = $_files['userfile']['name']; $extension = pathinfo($rawfilename, pathinfo_extension); $uploadfile = $uploaddir . md5($rawfilename) . '.' . $extension; if (move_uploaded_file($_files['userfile']['tmp_name'], $uploadfile)) { echo "file valid, , uploaded.\n"; } else { echo "upload failed"; } this script assumes trust uploaded content , md5 function just quick , easy way "sanitize" (if can call that) file's name.
Comments
Post a Comment