mysql - PHP pagination SQL Syntax error when page= -1 -


when check url page pagination, pagination worked , show page result in page , page=+1:

mydomain/search.php?page=1  mydomain/search.php?page=2

but when check url:

mydomain/search.php?page=-1  mydomain/search.php?page=-2

i see error: 

you have error in sql syntax; check manual corresponds mysql server version right syntax use near '-20, 10' @ line 1

i print result using pagination code:

// if number of results bigger maximum number   // of search results set in config start pagination   if ( $results > $conf['search_results'] )     {      // calculate first number of page show     // makes list of pages numbers smaller     if ((($page*$conf['search_results'])-($conf['search_results']*5)) >= 0)       $first=($page*$conf['search_results'])-($conf['search_results']*5);     else       $first=0;      // calculate last element of pagination list     if ((($page*$conf['search_results'])+($conf['search_results']*6)) <= $results)       $last =($page*$conf['search_results'])+($conf['search_results']*6);     else       $last = $results;      @    $i=$first/$conf['search_results'];      // previous link     if ($page > 0)      {       $pagenum = $page - 1;       echo ' <a style="float:left;" href="' . url . '/search.php?page=' . $pagenum . '&amp;' . $session->fetch('listingsearchvariablespage') . '">pre</a> | ';      }      // middle pagination     ( $step = $first; $step < $last; $step=$step+$conf['search_results'] )       {        if ( $i == $page )         {      $pagenum = $i+1;     echo ' <span class="warning">' . $pagenum . '</span> | ';     $i++;         }        else         {      $pagenum = $i+1;     echo ' <a href="' . url . '/search.php?page=' . $i . '&amp;' . $session->fetch('listingsearchvariablespage') . '">' . $pagenum . '</a> | ';     $i++;         }       }      // next link     if ($page - (($results / $conf['search_results']) - 1) < 0)      {       $pagenum = $page+1;       echo ' <a style="float:right;" href="' . url . '/search.php?page=' . $pagenum . '&amp;' . $session->fetch('listingsearchvariablespage') . '">next</a>';            }     }

now, how can fix error negative number , prevent attack?

i'd recommend simple like:

if($page < 1)     $page = 1;

Comments

Post a Comment

Popular posts from this blog

apache - Remove .php and add trailing slash in url using htaccess not loading css -

i have add following code htaccess file removing .php extension , add trailing slash urls. worked fine reduced page loading speed , css code not loading @ all. pages ugly. please help rewriteengine on rewritebase / ## hide .php extension snippet # externally redirect /dir/foo.php /dir/foo rewritecond %{the_request} ^[a-z]{3,}\s([^.]+)\.php [nc] rewriterule ^ %1/ [r,l] # add trailing slash rewritecond %{request_filename} !-f rewritecond %{request_uri} !/$ rewriterule . %{request_uri}/ [l,r=301] # internally forward /dir/foo /dir/foo.php rewritecond %{request_filename} !-d rewritecond %{request_filename}.php -f rewriterule ^(.*?)/?$ $1.php [l] we can rewrite urls using .htaccess files. before writing in .htaccess files need verify kind of server using. can check server adding a <?php phpinfo(); ?> in php page. ensure mod_rewrite module enabled in apache server. can identified checking phpinfo included page. common methods used url rewriting follows ...
Read more

javascript - jQuery show full size image on click -

pretty self explanatory not workking . i want display full image when user click on image... yes know there tons of plugins but i want keep simple. any idea ? css : .full { display: none; width: 500px; height: 500px; margin-left: 100px; margin-top: -300px; position: fixed; background-color: #f00; z-index: 6; } .thumbnail { width: 50px; height: 50px; } html: <img class="thumbnail" src="http://4.bp.blogspot.com/-uhbdp2esxng/txneptvi92i/aaaaaaaaaky/upfqis7zto0/s1600/rihanna-wallpaper.jpg"> jquery: $(document).ready(function() { $('.thumbnail').on('click', function() { var img = $('<img />',{src:this.src,'class':'full'}); $('.full').html(img).show(); console.log('done!'); }); }); try looking how jquery works. $(document).ready(function() { $('.thumbnail').on('click', function(...
Read more