$query = "UPDATE tbl_users(password) SET ('$hashed_password'WHERE email='$email')";
Hallo bin leider noch Anfänger, was ist hier falsch?
Hallo bin leider noch Anfänger, was ist hier falsch?
<?php
session_start();
include_once 'dbconnect.php';
if (!isset($_SESSION['userSession'])) {
header("Location: index.php");
}
$query = $DBcon->query("SELECT * FROM tbl_users WHERE user_id=".$_SESSION['userSession']);
$userRow=$query->fetch_array();
$DBcon->close();
$password = strip_tags($_POST['password']);
$email = strip_tags($_POST['email']);
$password = $DBcon->real_escape_string($password);
$email = $DBcon->real_escape_string($email);
$hashed_password = password_hash($password, PASSWORD_DEFAULT);
$check_email = $DBcon->query("SELECT email FROM tbl_users WHERE email='$email'");
$count=$check_email->num_rows;
if ($count==0) {
//$query = "UPDATE tbl_users(password) SET ('$hashed_password'WHERE email='$email')";
$query = "UPDATE tbl_users SET password='$hashed_password'WHERE email = $email";
$DBcon->query($query);
Kommentar