pdoの基本的な使用

     query
$dsn = "mysql:host=127.0.0.1;dbname=php7";
$pdo = new PDO($dsn, 'root', 'root');
$pdo->query('set names utf8');
$result = $pdo->query('select * from day1');
$result->setFetchMode(PDO::FETCH_ASSOC);//            。  
$result_arr=$result->fetchAll();
print_r($result_arr);

//フォームページの作成

<html>
<table>
<form action="form.php" method='post'>
    <input type='text' name='name'/>
    <input type='password' name='pwd'/>
    <input type='submit' value='  '>
</form>
</table>

</html>

//別のフォーム(form.php)ページに移動し、pdoの各項目の使用を行い、pdoで各種処理を行う

<?php
$dsn = "mysql:host=127.0.0.1;dbname=php7";//     
$db = new PDO($dsn,'root','root');//       
$name=$_POST['name'];//  
//$name="zhangsan' or 'a' ='a";
$pwd=$_POST['pwd'];
$sql="select * from pdo1 where name='$name' and pwd ='$pwd'";
$sql="select * from pdo1 where name =? and pwd =?";
$stmt = $db->prepare($sql);
$exeres = $stmt->execute(array($name, $pwd));
if ($exeres) {
    while ($row = $stmt->fetch(PDO::FETCH_ASSOC)){
        print_r($row);
    }
}

//sql導入

$dsn = "mysql:host=127.0.0.1;dbname=php7";
$db = new PDO($dsn,'root','root');
$name="zhangsan' or 'a' ='a";
$pwd=$_POST['pwd'];
$sql="select * from pdo1 where name='$name' and pwd ='$pwd'";