Home/ Questions/Q 6914965
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-27T09:24:56+00:00

I’m trying to submit a form and process it with php. Here’s what I

  • 0

I’m trying to submit a form and process it with php. Here’s what I do (it simplified but still not working…)

here my index :

<html>
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
    <script type="text/javascript" src="jquery-1.7.1.min.js"></script>
    <script>
        $().ready(function(){
        $("#addemail").click(function(){
        var email=$("#email").val();
        $.ajax({
            type: "POST",
            url: "addemail.php",
            data: "email="+email,
            success: function(){
                console.log("success! ")
                },   
            error:  console.log("error!! ")    
            });        
        }); 
    });
    </script>
</head>
<body>        
    <div id="wrapper">        
          <h2>Mon form...</h2>
          <form action="">
              <table>
                <tr><td><label>Email:</label></td>
                    <td><input type="text" id="email" name="email" /></td>
                    <td><input type="submit" id="addemail" value="Add" /></td>
                </tr>  
               </table>                   
          </form>               
    </div>
</body>

Here’s my php file:

<?php
$connection =  mysql_connect('localhost', 'XXX', 'XXX');
$db=  mysql_select_db('mydb', $connection);
$email= $_REQUEST["email"];
$query  = "INSERT INTO users(email) VALUES ('$email')";
mysql_query($query);

?>

What Am I doing wrong (probably not the php because if i give it to action in my form it s working but in php not ajax…)
Thanx in advance

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team
     $email= $_REQUEST["email"];
 $query  = "INSERT INTO users(email) VALUES ('$email')";
 mysql_query($query);

    SQL Injection Vulnerability!

     $email= mysql_real_escape_string(stripslashes($_POST["email"]));

    Also, wouldn’t you need to add semicolons?

     success: function(){
     console.log("success!");
 },

    And put the error inside an anonymous function?

     error: function(){
     console.log("error!");
 }

    Also your form should be as complete as possible:

    <form id="formContact" method="post" action="addemail.php">
    <input type="text" name="email" id="email" />
    <input type="submit" id="addemail" value="Add"/>
</form>
    • 0