php - MYSQL Update Query not work complete

Question

I have a little Problem with my Update query to chnage the Profile Infos

Problem now:

• My Update Query is not working completly, the E-Mail query work but the status query is not working.

PHP CODE

if(!empty($_POST)) {
  $query = "UPDATE users SET";
  if(!empty($_POST['email']) && filter_var($_POST['email'],   FILTER_VALIDATE_EMAIL) && $_POST['email'] != $_SESSION['u']['email']) {
    $s_mail = $_POST['email'];
    $row = mysql_num_rows(mysql_query("SELECT email FROM users WHERE email='$s_mail'"));
    if($row != 0) {
      header("Location: ".$l['settings']."?msg=2");
      die("REDIRECT");
    }
    $query .= " `email`='".$_POST['email']."'";
    $_SESSION['u']['email'] = $_POST['email'];
  } else if(!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) {
    header("Location: ".$l['settings']."?msg=3");
    die("REDIRECT");
  }
  //PROBLEM starts here
  if(!empty($_POST['status'])) {
    $query .= ",`status`='".$_POST['status']."'";
    $_SESSION['u']['status'] = $_POST['status'];
  }
  //AND ends here
  $query .= " WHERE id='".$_SESSION['u']['id']."'";
  mysql_query($query);
  header("Location: ".$l['settings']."?msg=1");
  die("REDIRECT");
}

HTML FORM

<input maxlength="200" type="text" class="form-control" placeholder="Status" name="status" value="<?php //ECHO STATUS ?>" />

Maybe someone can help me.

Answer 1

On your $query you have

$query .= ",`status`='".$_POST['status']."'";

remove comma make it like this

$query .= " `status`='".$_POST['status']."'";

Answer 2

You need to set a flag for email condition as

$flag = FALSE;// set a flag
if (!empty($_POST)) {
    if (!empty($_POST['email']) && filter_var($_POST['email'], FILTER_VALIDATE_EMAIL) && $_POST['email'] != $_SESSION['u']['email']) {
        $s_mail = $_POST['email'];
        $row = mysql_num_rows(mysql_query("SELECT email FROM users WHERE email='$s_mail'"));
        if ($row != 0) {
            header("Location: " . $l['settings'] . "?msg=2");
            die("REDIRECT");
        }
        $flag = TRUE;// set to true if success

        $_SESSION['u']['email'] = $_POST['email'];
    } else if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) {
        header("Location: " . $l['settings'] . "?msg=3");
        die("REDIRECT");
    }

    //PROBLEM starts here
    if (!empty($_POST['status'])) {
        $query = "UPDATE users SET";
        $query .= " `status`='" . $_POST['status'] . "'";
        if ($flag) {// if true then apply email condition
            $query .= ",`email`='" . $_POST['email'] . "'";
        }
        $query .= " WHERE id='" . $_SESSION['u']['id'] . "'";
        $_SESSION['u']['status'] = $_POST['status'];
    }
    //AND ends here

    mysql_query($query);
    header("Location: " . $l['settings'] . "?msg=1");
    die("REDIRECT");
}

Note:- mysql is deprecated instead use mysqli OR pdo