product code verification script

Question

I have a product code verification script. How to make it so that after the lightning of a code, it can not be used a second time.

<?php 

require_once('captcha.php');

$error = $verified = false;

if($_POST){

  mysql_connect('localhost', 'root', 'root');
  mysql_select_db('code');

  if(!PhpCaptcha::Validate($_POST['captcha'])){

    $error = 'Anti-bot code is not valid!';

  }else{

    $query = "SELECT product_title FROM code1 WHERE code_plain='".mysql_real_escape_string($_POST['code'])."'";



    $result = mysql_query($query) or die(mysql_error());
    $res = mysql_fetch_assoc($result);
    if(mysql_num_rows($result)>0) $verified = $res['product_title'];


      else $error = '<b>This poruduct code is not valid or doesn\'t exist!</b>';

  } 

}

?>

you need to either UPDATE the table or DELETE the associated data — Funk Forty Niner, Jan 31 '18 at 12:05
You are using [an obsolete database API](http://stackoverflow.com/questions/12859942/why-shouldnt-i-use-mysql-functions-in-php) and should use a [modern replacement.](http://php.net/manual/en/mysqlinfo.api.choosing.php) — Ravi Sachaniya, Jan 31 '18 at 12:10

score 0 · Answer 1 · answered Jan 31 '18 at 12:30

0

if(mysql_num_rows($result)>0) {
   $verified = $res['product_title'];
   mysql_query('DELETE FROM code1 WHERE 
   code_plain='".mysql_real_escape_string($_POST['code'])."'";
 }

But you shouldn't be using mysql_ -functions as they are obsolete! Take a look to PDO (http://php.net/pdo) for example.

answered Jan 31 '18 at 12:30

Athene noctua

82
1
7

Does your original query give any results at all? – Athene noctua Jan 31 '18 at 13:15

product code verification script

1 Answers1