Im utilizing WP 3.5.2 and WPMU. I develop one web page http://baohiem.data/chon-mat-gui-vang.
This web page makes use of world $wpdb to question desk _blogs.(_blogs was personalized, added some fields.)
When submit kind, I take advantage of GET methodology, however, when log in, i’ve information ($_REQUEST; $_GET) however not log in, there’re no information.
Why? I do not perceive what occur.
Can anybody assist me?
Thanks.
<?php
get_header();
?>
<kind motion="" methodology="get">
<enter id="searchfield-cmgv" kind="textual content" identify="hoten" placeholder="Họ và tên tư vấn viên...." measurement="35" worth="<?=$_REQUEST['hoten']?>"/>
<!-- location-->
<choose identify="location">
<possibility worth="">-------- Tỉnh/TP --------</possibility>
<possibility worth="Hà Nội" <?php if($_REQUEST['location']=='Hà Nội') echo 'chosen';?> >Hà Nội</possibility>
<possibility worth="TP Hồ Chí Minh" <?php if($_REQUEST['location']=='TP Hồ Chí Minh') echo 'chosen';?> >TP Hồ Chí Minh</possibility>
<!-- <possibility worth="Huế" <?php if($_REQUEST['location']=='Huế') echo 'chosen';?> >Huế</possibility>-->
<possibility worth="Đà Nẵng" <?php if($_REQUEST['location']=='Đà Nẵng') echo 'chosen';?> >Đà Nẵng</possibility>
<possibility worth="Hải Phòng" <?php if($_REQUEST['location']=='Hải Phòng') echo 'chosen';?> >Hải Phòng</possibility>
<possibility worth="Đồng Nai" <?php if($_REQUEST['location']=='Đồng Nai') echo 'chosen';?> >Đồng Nai</possibility>
<!-- <possibility worth="Đồng Tháp">Đồng Tháp</possibility>
<possibility worth="Gia Lai">Gia Lai</possibility> -->
<possibility worth="Hà Giang" <?php if($_REQUEST['location']=='Hà Giang') echo 'chosen';?> >Hà Giang</possibility>
<!-- <possibility worth="Hà Nam">Hà Nam</possibility>
<possibility worth="Hà Tĩnh">Hà Tĩnh</possibility> -->
<possibility worth="Hải Dương" <?php if($_REQUEST['location']=='Hải Dương') echo 'chosen';?> >Hải Dương</possibility>
<possibility worth="Nghệ An" <?php if($_REQUEST['location']=='Nghệ An') echo 'chosen';?> >Nghệ An</possibility>
<possibility worth="Thái Nguyên" <?php if($_REQUEST['location']=='Thái Nguyên') echo 'chosen';?> >Thái Nguyên</possibility>
<possibility worth="Yên Bái" <?php if($_REQUEST['location']=='Yên Bái') echo 'chosen';?> >Yên Bái</possibility>
</choose>
<choose identify="firm">
<possibility worth="">-------- Công ty --------</possibility>
<possibility worth="Prudential" <?php if($_REQUEST['company']=='Prudential') echo 'chosen';?> >Prudential</possibility>
<possibility worth="Manulife" <?php if($_REQUEST['company']=='Manulife') echo 'chosen';?> >Manulife</possibility>
<possibility worth="AIA" <?php if($_REQUEST['company']=='AIA') echo 'chosen';?> >AIA</possibility>
<possibility worth="Dai-ichi Life" <?php if($_REQUEST['company']=='Dai-ichi Life') echo 'chosen';?> >Dai-ichi Life</possibility>
<possibility worth="ACE Life" <?php if($_REQUEST['company']=='ACE Life') echo 'chosen';?> >ACE Life</possibility>
<possibility worth="Bảo Việt" <?php if($_REQUEST['company']=='Bảo Việt') echo 'chosen';?> >Bảo Việt</possibility>
<possibility worth="Hanwha Life" <?php if($_REQUEST['company']=='Hanwha Life') echo 'chosen';?> >Hanwha Life</possibility>
<possibility worth="Generali" <?php if($_REQUEST['company']=='Generali') echo 'chosen';?> >Generali</possibility>
<possibility worth="Chưa có" <?php if($_REQUEST['company']=='Chưa có') echo 'chosen';?> >Chưa có</possibility>
</choose>
<enter kind="hidden" worth="true" identify="verify" />
<enter id="searchbutton" worth="Tìm kiếm" kind="submit">
</kind>
<?php
world $wpdb;
// lấy thông tin công ty, họ tên, location
$firm = $_GET['company'];
$hoten = $_GET['hoten'];
$location = $_GET['location'];
if(!$firm && !$hoten && !$location){
// string question
$strquery = '
SELECT bh_blogs.blog_id
FROM bh_blogs
WHERE bh_blogs.blog_id >1
AND bh_blogs.deleted =0
ORDER BY bh_blogs.voted DESC
';
// get consequence
$res = $wpdb->question($strquery);
// show consequence
//
//
} else {
//var_dump($location); var_dump($firm); var_dump($hoten);
$strquery = '
SELECT bh_blogs.blog_id
FROM bh_blogs
WHERE bh_blogs.blog_id > 1 AND bh_blogs.deleted =0 ';
if($hoten!='') $strquery .= ' AND bh_blogs.site_name LIKE "%'.$hoten.'%" ';
if($firm!='') $strquery .= ' AND bh_blogs.firm="'.$firm.'" ';
if($location!='') $strquery .= ' AND bh_blogs.location="'.$location.'" ';
$strquery .= ' ORDER BY bh_blogs.voted DESC ';
//show consequence
//
//
}
get_footer();
?>
the url: http://baohiem.data/chon-mat-gui-vang/?hoten=&location=Hải+Phòng&firm=Prudential not work.
I can not Get[‘location’],Get[‘hoten’],Get[‘company’]
Resolved:
I take advantage of the plugin Higher WP Safety and it filters my URL.
To allow passing parameters like: instance.com?src=SomeSource&web page=1…..
Log in to you ACP. Higher WP Safety/System Tweak and uncheck the choice “Filter Suspicious Question Strings”.
Word: consideration together with your parameters is protected on your web site 🙂
Merry Christmas.