PHP Search

In before noob flame, thank you.

I'm like trying to create a PHP search script for my website. So far I have two files: index.php and search.php

form of index.php looks like this:

<div id="search">
   <form method="post" action="search.php">
      <input type="text" name="search">
      <input type="submit" value="Search!">
   </form>
</div>

search.php file looks like this:

<?php
   $search_result = 0;
   $query = " SELECT * FROM items WHERE itemid LIKE '%$search%' ";
   $search_result = mysql_query($query) or die(mysql_error());

   if ($search_result > 0) {
      search_result($search_result);
   }
   else {
      echo " No results to display! ";
   }
?>

What the fuck I am doing wrong?

hmmm
try to add $search = $_POST['search'];
in the beginning of the search php and change
if ($search_result > 0) to if($search_result != "")

and you havent defined function search_result()
...
so basically its all fucked up!

>>1
sql injection lol

>>2
This is how search.php looks now:

<?php
   $search = $_POST['search'];
   $query = " SELECT * FROM items WHERE itemid LIKE '%$search%' ";
   $search_result = mysql_query($query) or die(mysql_error());

   if ($search_result != "") {
      search_result($search_result);
      $search_result == "";
   }
   else {
      echo " No results to display! ";
   }
?>

I have search_result function defined elsewhere.

Except the paging it looks like this:

function search_result($search_result) {
   $var = " SELECT * FROM items WHERE itemid = '$search_result' ";
   $var_query = mysql_query($var) or die(mysql_error());
   echo $var;
}

Still got an blank page ;(

<?php
echo '<html><body><h1>WELCOM TO MY WEB SIGHT</h1></body></html>';
?>

SQL Injection FTW!

lol php

Google uses a 2 line PHP script for their search engine, too.

>>8
<?php require('real_search_engine.py');
/* lol second line */ ?>

What?

<-- check em dubz

Don't change these.

Name:		Email:
Entire Thread Thread List