<?php
$con=mysql_connect("localhost","username","password");
if($con==FALSE)
{
die('<html><body onload="alert(' . "'" . mysql_error() . "'" . ')"></body></html>');
}
mysql_select_db("management",$con);
echo mysql_error();
$s=mysql_query("SELECT `_Password` FROM `persons` WHERE `_Name`=" . '"' . $_POST["username"] . '"');
$row = mysql_fetch_array($s);
if(count($row)==0)
{echo '<html><body onload="alert( \'查无此人\')"></body></html>';}
else
{
echo $row['_Password'];
}
mysql_close($con);
?>
直接echo $sql;
输出的是Resouces Id #4
$con=mysql_connect("localhost","username","password");
if($con==FALSE)
{
die('<html><body onload="alert(' . "'" . mysql_error() . "'" . ')"></body></html>');
}
mysql_select_db("management",$con);
echo mysql_error();
$s=mysql_query("SELECT `_Password` FROM `persons` WHERE `_Name`=" . '"' . $_POST["username"] . '"');
$row = mysql_fetch_array($s);
if(count($row)==0)
{echo '<html><body onload="alert( \'查无此人\')"></body></html>';}
else
{
echo $row['_Password'];
}
mysql_close($con);
?>
直接echo $sql;
输出的是Resouces Id #4
