<?php
$servername = "localhost";
$username = "root";
$password = "";
try {
$conn = new PDO("mysql:host=$servername;dbname=fypdb", $username, $password);
// set the PDO error mode to exception
$conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
}
catch(PDOException $e)
{
echo "Connection failed: " . $e->getMessage();
}
$number = count($_POST["name"]);
if($number > 1)
{
for($i=0; $i<$number; $i++)
{
if(trim($_POST["name"][$i] != ''))
{
$sql = "INSERT INTO tbname(name) VALUES('".mysqli_real_escape_string($conn, $_POST["name"][$i])."')";
$conn->exec($sql);
}
}
echo "Data Inserted";
}
else
{
echo "Please Enter Name";
}
如果没有错误,我想我已经将除mysqli_real_escape_string之外的所有代码更改为PDO。我需要mysqli_real_escape_string的替代品或解决方案。