阅读背景:

php里怎么找不到sqlparameter???

来源:互联网 

搜索了下可以像这样指定MYSQL的参数类型,

$query = sprintf("SELECT * FROM Users where UserName='%s' and Password='%s'", 
                  mysql_real_escape_string($Username), 
                  mysql_real_escape_string($Password)); 
mysql_query($query); 

//-----or 

$db = new mysqli("localhost", "user", "pass", "database"); 
$stmt = $mysqli -> prepare("SELECT priv FROM testUsers WHERE username=? AND password=?"); 
$stmt -> bind_param("ss", $user, $pass); 
$stmt -> execute();

$query = sprintf("SELE



你的当前访问异常,请进行认证后继续阅读剩余内容。

分享到: