Warning: mysql_num_rows() expects parameter 1 to be resource, boolean given in /home

PHP
1 
<?php

include 'constants.php';
include 'mail.php';

if(isset($_GET['log_out'])) {
    $Login_Process = new Login_Process;
    $Login_Process->log_out($_SESSION['username'], $_SESSION['password']); }

class Login_Process {

    var $cookie_user = CKIEUS;
    var $cookie_pass = CKIEPS;

    function connect_db() {
        $conn_str = mysql_connect(DBHOST, DBUSER, DBPASS);
        mysql_select_db(DBNAME, $conn_str) or die ('Could not select Database.');
    }

    function query($sql) {

        $this->connect_db();
        $sq = mysql_query($sql);
        $num_rows = mysql_num_rows($sq);
        $result = mysql_fetch_assoc($sq);
            
    return array("num_rows"=>$num_rows,"result"=>$result,"sql"=>$sql);
    
    }
    function welcome_note() {
            
        ini_set("session.gc_maxlifetime", Session_Lifetime); 
        session_start();
            
        if(isset($_COOKIE[$this->cookie_user]) && isset($_COOKIE[$this->cookie_pass])) {        
            $this->log_in($_COOKIE[$this->cookie_user], $_COOKIE[$this->cookie_pass], 'true', 'false', 'cookie'); 
        }
        if(isset($_SESSION['username'])) { 
            return "<a href=\\"".Script_URL.Script_Path."main.php\\">Welcome ".$_SESSION['first_name']."</a>";
        } else {
            return "<a href=\\"".Script_URL.Script_Path."index.php\\">Welcome Guest, Please Login</a>";
        }    
    }
    
    function check_login($page) {

        ini_set("session.gc_maxlifetime", Session_Lifetime); 
        session_start();

        if(isset($_COOKIE[$this->cookie_user]) && isset($_COOKIE[$this->cookie_pass])){
            $this->log_in($_COOKIE[$this->cookie_user], $_COOKIE[$this->cookie_pass], 'true', $page, 'cookie'); 
        } else if(isset($_SESSION['username'])) {     
            if(!$page) { $page = Script_Path."main.php"; }
                    header("Location: http://".$_SERVER['HTTP_HOST'].$page); 
        } else {
            return true;
        }
    }

    function check_status($page) {

        ini_set("session.gc_maxlifetime", Session_Lifetime); 
        session_start();

        if(!isset($_SESSION['username'])){
            header("Location: http://".$_SERVER['HTTP_HOST'].Script_Path."index.php?page=".$page); 
        }
    }

    function log_in($username, $password, $remember, $page, $submit) {
        
        if(isset($submit)) {

        if($submit !== "cookie") {
            $password = md5($password);
        }

        $query = $this->query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND password='$password'");

        if($query['num_rows'] == 1) {

            if ($query['result']['status'] == "suspended") {
                return "Account Suspended, <br /> Contact System Administrator.";
            }
            if ($query['result']['status'] == "pending") {
                return "Account Pending, <br /> Administrator has not yet approved your account.";
            }
                $this->set_session($username, $password);    
                if(isset($remember)) 
                { $this->set_cookie($username, $password, '+');    }
                            
        } else {
                return "Username or Password not reconised.";
        }            
            $this->query("UPDATE ".DBTBLE." SET last_loggedin = '".date ("d/m/y G:i:s")."' WHERE username = '$username'");
        
        if(!$page) { $page = Script_Path."main.php"; }
            
        if ($page == 'false') {
                return true;
        } 
        
        }
    }
    
    function set_session($username, $password) {
    
            $query = $this->query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND password='$password'");
    
            ini_set("session.gc_maxlifetime", Session_Lifetime); 
            session_start();

            $_SESSION['first_name']    = $query['result']['first_name'];
            $_SESSION['last_name']     = $query['result']['last_name'];
            $_SESSION['email_address'] = $query['result']['email_address'];
            $_SESSION['username']      = $query['result']['username'];
            $_SESSION['info']          = $query['result']['info'];
            $_SESSION['user_level']    = $query['result']['user_level'];
            $_SESSION['password']      = $query['result']['password'];

    }    
    
    function set_cookie($username, $password, $set) {

            if($set == "+")
                { $cookie_expire = time()+60*60*24*30; }
            else 
                { $cookie_expire = time()-60*60*24*30; }        
    
            setcookie($this->cookie_user, $username, $cookie_expire, '/');
            setcookie($this->cookie_pass, $password, $cookie_expire, '/');
    
    } 

    function log_out($username, $password) {

    session_start();
    session_unset();
    session_destroy();
        $this->set_cookie($username, $password, '-');

        if(!isset($header)) {
            header('Location: ../index.php');
        } else {
            return true;
        }
    
    }

    function edit_details($post, $process) {

        if(isset($process)) {
            
        $first_name        = $post['first_name'];
        $last_name        = $post['last_name'];
        $email_address    = $post['email_address'];
        $info            = $post['info'];
        $username        = $post['username'];
        $password        = $_SESSION['password'];
        
        if((!$first_name) || (!$last_name) || (!$email_address) || (!$info)) {
            return "Please enter all details.";
        }

        $this->query("UPDATE ".DBTBLE." SET first_name = '$first_name', last_name = '$last_name', 
        email_address = '$email_address', info = '$info' WHERE username = '$username'");        

                $this->set_session($username, $password);        
                if(isset($_COOKIE[$this->cookie_pass])) 
                { $this->set_cookie($username, $pass, '+'); }

                return "Details sucessfully changed.";
        }
    }

    function edit_password($post, $process) {

        if(isset($process)) {

        $pass1        = $post['pass1'];
        $pass2        = $post['pass2'];
        $password    = $post['pass'];
        $username    = $post['username'];
        
        if ((!$password) || (!$pass1) || (!$pass2)) {
            return "Missing required details.";
        } 
        if (md5($password) !== $_SESSION['password']) {
            return "Current password is incorrect.";
        }
        if ($pass1 !== $pass2) {
            return "New passwords do not match.";
        }

        $new = md5($pass1);
        $this->query("UPDATE ".DBTBLE." SET password = '$new' WHERE username = '$username'");

                $this->set_session($username, $new);        
                if(isset($_COOKIE[$this->cookie_pass])) 
                { $this->set_cookie($username, $pass, '+'); }

            return "Password update successfull.";
        }
    }

    function Register($post, $process) {

        if(isset($process)) {

        $pass1            = $post['pass1'];
        $pass2            = $post['pass2'];
        $username        = $post['username'];
        $email_address    = $post['email_address'];
        $first_name        = $post['first_name'];
        $last_name        = $post['last_name'];
        $info            = $post['info'];
        
        if((!$pass1) || (!$pass2) || (!$username) || (!$email_address) || (!$first_name) || (!$last_name) || (!$info)) {
        return "Some Fields Are Missing";
        }
        if ($pass1 !== $pass2) {
        return "Passwords do not match";
        }
        $query = $this->query("SELECT username FROM ".DBTBLE." WHERE username = '$username'");
        if($query['num_rows'] > 0){
        return "Username unavialable, please try a new username";
        }
        $query = $this->query("SELECT email_address FROM ".DBTBLE." WHERE email_address = '$email_address'");
        if($query['num_rows'] > 0){
        return "Emails address registered to another account.";
        }
        
        if(Admin_Approvial == true) {
        $status = "pending";
        } else {
        $status = "live";
        }
        
        $this->query("INSERT INTO ".DBTBLE." (first_name, last_name, email_address, username, password, info, status) VALUES ('$first_name', '$last_name', '$email_address', '$username', '".md5($pass1)."', '".htmlspecialchars($info)."', '$status')");
        
        User_Created($username, $email);

        if(Admin_Approvial == true) {
        return 'Sign up was sucessful, your account must be reviewed by the administrator before you can login.';
        } else {
        return 'Sign up was sucessful, you may now log in.';
        }     
    }
    
    } 

    function Forgot_Password($get, $post) {
    
    $username = $post['username'];
    if(!$username) { 
    $username = $get['username']; } 
    
    $code = $post['code'];
    if(!$code) { 
    $code = $get['code']; } 

        if (isset($code)) {
            $query = $this->query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND forgot='$code'");
        
        if($query['num_rows'] == 1) {        
                return "<!-- !-->";
        } else {
        if(isset($code) && isset($username)) {
                return "Link Invalid, Please Request a new link.";
        } else {
                return false;
        }
    }
    }
}

    function Request_Password($post, $process) {
        
        $username = $post['username'];
        $email = $post['email'];
            
        if(isset($process)) {

        $query = $this->query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND email_address = '$email'");

            if((!$username) || (!$email)) {
                return "Please enter all details.";
            }

            if($query['num_rows'] == 0){
                return "Matching details were not found.";
            }

            $chars = "abcdefghijkmnopqrstuvwxyz023456789";
            srand((double)microtime()*1000000);
            $i = 0;
            $pass = '' ;

               while ($i <= 7) {
                   $num = rand() % 33;
                $tmp = substr($chars, $num, 1);
                $pass = $pass . $tmp;
                $i++;
            }
            $code = md5($pass);
            $this->query("UPDATE ".DBTBLE." SET forgot = '$code' WHERE username='$username' AND email_address='$email'");

            Mail_Reset_Password($username, $code, $email);
                return "We have sent an email to your address, this will allow you to reset your password.";
            
        }
    }

    function Reset_Password($post, $process) {

        if(isset($process)) {
        
        $pass1 = $post['pass1'];
        $pass2 = $post['pass2'];
        $username = $post['username'];
        
        if ($pass1 !== $pass2) {
            return "New passwords do not match";
        }
        
            $password = md5($pass1);

        $query = $this->query("UPDATE ".DBTBLE." SET password = '$password', forgot = 'NULL' WHERE username = '$username'");
        
        Mail_Reset_Password_Confirmation($username, $email);
            return "Password Reset Sucsessfull, You may now login.";

        }
    } 
    
}

?>

Result:

Warning: mysql_num_rows() expects parameter 1 to be resource, boolean given in /home/bluebeam/public_html/3.8.3_loginscript/include/processes.php on line 24

Warning: mysql_fetch_assoc() expects parameter 1 to be resource, boolean given in /home/bluebeam/public_html/3.8.3_loginscript/include/processes.php on line 25

any one plz help me.

2

echo your query before the line 24 and check whether value is passed

3

That generally indicates that a query has failed. btw you should seriously consider migrating over from the mysql_* extension to either the mysqli_* extension or PDO as the mysql_* extension has been deprecated as of the current version of php

4

i checked… the values r passed but still i have those errors

5

did you print the query , copy the query and run in sql,check whether it is executed or not

6

Instead of:

".DBTBLE."

have the actual name of the table instead as it’s doubtful that the name of the table will change during the lifespan of the app. If the table name does change then you can always use whatever editor program you use to replace the table name across all files.