$query=sprintf("SELECT * FROM Users where UserName='%s' and Password='%s'",
mysql_real_escape_string($Username),
mysql_real_escape_string($Password))
mysql_query($query)
或是
$db=new mysqli("localhost","user","pass","database")
$stmt=$mysqli->prepare("SELECT priv FROM testUsers WHERE username=? AND password=?")
$stmt->bind_param("ss",$user,$pass)
$stmt->execute()
select * from a,b,c where a.code=b.code and a.code=c.codeselect * from a,b,c where a.code=b.code and c.code=c.code (无意义)
select (select id from d where code=c.code) from a,b,c where a.code=b.code and c.code=c.code (无意义)
是不是贴错了。。
欢迎分享,转载请注明来源:内存溢出
评论列表(0条)