有人知道这是怎么回事吗?,即使凭证是正确的,其他也会被回音
include("includes/dbconn.php");
// username and password sent from form
$username=$_POST['username'];
$password=$_POST['password'];
$sql=("SELECT * FROM customers WHERE email ='.$username.' and password='.$password.'");
$result=mysql_query($sql);
$count=mysql_num_rows($result);
if($count==1){
session_register("username");
session_register("password");
header("location:login_success.php");
} else {
echo "Wrong Username or Password";
}
由于查询失败,else
部分正在执行。从查询中删除不必要的括号。此外,您还错误地附加了值。由于您将查询括在方括号内,因此不需要再次追加它。
所以更改您的查询
$sql=("SELECT * FROM customers WHERE email ='.$username.' and password='.$password.'");
至
$sql="SELECT * FROM customers WHERE email ='$username' and password='$password'";