国产区在线观看成人精品,亚洲欧美日韩区,日韩一区二区三区电影在线观看

ï»??xml version="1.0" encoding="utf-8" standalone="yes"?>国产区在线观看成人精品,亚洲欧美日韩区,日韩一区二区三区电影在线观看http://www.aygfsteel.com/yeshucheng/archive/2010/12/14/340635.htmlå¶æ¾æˆ?/dc:creator>å¶æ¾æˆ?/author>Tue, 14 Dec 2010 05:58:00 GMThttp://www.aygfsteel.com/yeshucheng/archive/2010/12/14/340635.htmlåœ¨JDBCåº”ç”¨ä¸?å¦‚æžœä½ å·²¾læ˜¯½Eæœ‰æ°´åã^å¼€å‘è€?ä½ å°±åº”è¯¥å§‹ç»ˆä»¥PreparedStatementä»£æ›¿Statement.ä¹Ÿå°±æ˜¯è¯´,åœ¨ä“Qä½•æ—¶å€™éƒ½ä¸è¦ä½¿ç”¨Statement.
åŸÞZºŽä»¥ä¸‹çš„åŽŸå›?
ä¸€.ä»£ç çš„å¯è¯ÀL€§å’Œå¯ç»´æŠ¤æ€?
è™½ç„¶ç”¨PreparedStatementæ¥ä»£æ›¿Statementä¼šä‹Éä»£ç å¤šå‡ºå‡ è¡Œ,ä½†è¿™æ ïLš„ä»£ç æ— è®ºä»Žå¯è¯ÀL€§è¿˜æ˜¯å¯¾l´æŠ¤æ€§ä¸Šæ¥è¯´.éƒ½æ¯”ç›´æŽ¥ç”¨Statementçš„ä»£ç é«˜å¾ˆå¤šæ¡£æ¬¡:

stmt.executeUpdate("insert into tb_name (col1,col2,col2,col4) values ('"+var1+"','"+var2+"',"+var3+",'"+var4+"')");

perstmt = con.prepareStatement("insert into tb_name (col1,col2,col2,col4) values (?,?,?,?)");
perstmt.setString(1,var1);
perstmt.setString(2,var2);
perstmt.setString(3,var3);
perstmt.setString(4,var4);
perstmt.executeUpdate();

ä¸ç”¨æˆ‘å¤šè¯?å¯¹äºŽ½W¬ä¸€¿Uæ–¹æ³?åˆ«è¯´å…¶ä»–äººåŽ»è¯ÖM½ çš„ä»£ç ?ž®±æ˜¯ä½ è‡ªå·Þp¿‡ä¸€ŒD‰|—¶é—´å†åŽ»è¯»,éƒ½ä¼šè§‰å¾—ä¼¤å¿ƒ.

äº?PreparedStatementž®½æœ€å¤§å¯èƒ½æé«˜æ€§èƒ½.
æ¯ä¸€¿Uæ•°æ®åº“éƒ½ä¼šž®½æœ€å¤§åŠªåŠ›å¯¹é¢„ç¼–è¯‘è¯å¥æä¾›æœ€å¤§çš„æ€§èƒ½ä¼˜åŒ–.å› äØ“é¢„ç¼–è¯‘è¯å¥æœ‰å¯èƒ½è¢«é‡å¤è°ƒç”?æ‰€ä»¥è¯å¥åœ¨è¢«DBçš„ç¼–è¯‘å™¨¾~–è¯‘åŽçš„æ‰§è¡Œä»£ç è¢«ç¼“å˜ä¸‹æ?é‚£ä¹ˆä¸‹æ¬¡è°ƒç”¨æ—¶åªè¦æ˜¯ç›¸åŒçš„é¢„¾~–è¯‘è¯å¥ž®×ƒ¸éœ€è¦ç¼–è¯?åªè¦ž®†å‚æ•°ç›´æŽ¥ä¼ å…¥ç¼–è¯‘è¿‡çš„è¯å¥æ‰§è¡Œä»£ç ä¸(ç›¸å½“äºŽä¸€ä¸ªæ¶µæ•?ž®×ƒ¼šå¾—åˆ°æ‰§è¡Œ.˜q™åÆˆä¸æ˜¯è¯´åªæœ‰ä¸€ä¸?Connectionä¸å¤š‹Æ¡æ‰§è¡Œçš„é¢„ç¼–è¯‘è¯å¥è¢«¾~“å˜,è€Œæ˜¯å¯¹äºŽæ•´ä¸ªDBä¸?åªè¦é¢„ç¼–è¯‘çš„è¯å¥è¯æ³•å’Œç¼“å˜ä¸åŒšw….é‚£ä¹ˆåœ¨ä“Qä½•æ—¶å€™å°±å¯ä»¥ä¸éœ€è¦å†‹Æ¡ç¼–è¯‘è€Œå¯ä»¥ç›´æŽ¥æ‰§è¡?è€Œstatementçš„è¯å¥ä¸,å³ä‹Éæ˜¯ç›¸åŒä¸€æ“ä½œ,è€Œç”±äºŽæ¯‹Æ¡æ“ä½œçš„æ•°æ®ä¸åŒæ‰€ä»¥ä‹Éæ•´ä¸ªè¯å¥ç›¸åŒ¹é…çš„æœÞZ¼šæžå°,å‡ ä¹Žä¸å¤ªå¯èƒ½åŒšw….æ¯”å¦‚:
insert into tb_name (col1,col2) values ('11','22');
insert into tb_name (col1,col2) values ('11','23');
å³ä‹Éæ˜¯ç›¸åŒæ“ä½œä½†å› äØ“æ•°æ®å†…å®¹ä¸ä¸€æ ?æ‰€ä»¥æ•´ä¸ªä¸ªè¯å¥æœ¬èínä¸èƒ½åŒšw…,æ²¡æœ‰¾~“å˜è¯å¥çš„æ„ä¹?äº‹å®žæ˜¯æ²¡æœ‰æ•°æ®åº“ä¼šå¯¹æ™®é€šè¯å¥ç¼–è¯‘åŽçš„æ‰§è¡Œä»£ç ç¼“å?˜q™æ ·æ¯æ‰§è¡Œä¸€‹Æ¡éƒ½è¦å¯¹ä¼ å…¥çš„è¯å¥ç¼–è¯‘ä¸€‹Æ?

å½“ç„¶òq¶ä¸æ˜¯æ‰€ä»¥é¢„¾~–è¯‘è¯å¥éƒ½ä¸€å®šä¼šè¢«ç¼“å?æ•°æ®åº“æœ¬íw«ä¼šç”¨ä¸€¿Uç–ç•?æ¯”å¦‚ä½¿ç”¨é¢‘åº¦½{‰å› ç´ æ¥å†›_®šä»€ä¹ˆæ—¶å€™ä¸å†ç¼“å˜å·²æœ‰çš„é¢„ç¼–è¯‘ç»“æž?ä»¥ä¿å˜æœ‰æ›´å¤šçš„ç©ºé—´å˜å‚¨æ–°çš„é¢„¾~–è¯‘è¯å¥.

ä¸?æœ€é‡è¦çš„ä¸€ç‚ÒŽ˜¯æžå¤§åœ°æé«˜äº†å®‰å…¨æ€?

å³ä‹Éåˆ°ç›®å‰äØ“æ?ä»æœ‰ä¸€äº›äh˜qžåŸºæœ¬çš„æ¶ä¹‰SQLè¯æ³•éƒ½ä¸çŸ¥é“.
String sql = "select * from tb_name where name= '"+varname+"' and passwd='"+varpasswd+"'";
å¦‚æžœæˆ‘ä»¬æŠŠ[' or '1' = '1]ä½œäØ“varpasswdä¼ å…¥˜q›æ¥.ç”¨æˆ·åéšæ„?çœ‹çœ‹ä¼šæˆä¸ÞZ»€ä¹?

select * from tb_name = 'éšæ„' and passwd = '' or '1' = '1';
å› äØ“'1'='1'è‚¯å®šæˆç«‹,æ‰€ä»¥å¯ä»¥ä“Qä½•é€šè¿‡éªŒè¯.æ›´æœ‰ç”šè€?
æŠŠ[';drop table tb_name;]ä½œäØ“varpasswdä¼ å…¥˜q›æ¥,åˆ?
select * from tb_name = 'éšæ„' and passwd = '';drop table tb_name;æœ‰äº›æ•°æ®åº“æ˜¯ä¸ä¼šè®©ä½ æˆåŠŸçš?ä½†ä¹Ÿæœ‰å¾ˆå¤šæ•°æ®åº“ž®±å¯ä»¥ä‹É˜q™äº›è¯å¥å¾—åˆ°æ‰§è¡Œ.

è€Œå¦‚æžœä½ ä½¿ç”¨é¢„ç¼–è¯‘è¯å?ä½ ä¼ å…¥çš„ä»ÖM½•å†…å®¹ž®×ƒ¸ä¼šå’ŒåŽŸæ¥çš„è¯å¥å‘ç”Ÿä“Qä½•åŒ¹é…çš„å…³ç³».(å‰ææ˜¯æ•°æ®åº“æœ¬èínæ”¯æŒé¢„ç¼–è¯?ä½†ä¸Šå‰å¯èƒ½æ²¡æœ‰ä»€ä¹ˆæœåŠ¡ç«¯æ•°æ®åº“ä¸æ”¯æŒ¾~–è¯‘äº?åªæœ‰ž®‘æ•°çš„æ¡Œé¢æ•°æ®åº“,ž®±æ˜¯ç›´æŽ¥æ–‡äšgè®‰K—®çš„é‚£äº?åªè¦å…¨ä‹Éç”¨é¢„¾~–è¯‘è¯å¥,ä½ å°±ç”¨ä¸ç€å¯¹ä¼ å…¥çš„æ•°æ®åšä“Qä½•è¿‡è™?è€Œå¦‚æžœä‹Éç”¨æ™®é€šçš„statement, æœ‰å¯èƒ½è¦å¯¹drop,;½{‰åšè´¹å°½å¿ƒæœºçš„åˆ¤æ–å’Œ˜q‡è™‘.

ä¸Šé¢çš„å‡ ä¸ªåŽŸå›?˜q˜ä¸‘Œ™®©ä½ åœ¨ä»ÖM½•æ—¶å€™éƒ½ä½¿ç”¨PreparedStatementå?

æœ‰çš„æ–îChå¯èƒ½æ¤æ—¶å¯¹äºŽç”¨æ³•˜q˜ä¸å¤ªç†è§£ä¸‹é¢ç»™ä¸ªå°ä¾‹å

Code Fragment 1:

String updateString = "UPDATE COFFEES SET SALES = 75 " + "WHERE COF_NAME LIKE ′Colombian′";
stmt.executeUpdate(updateString);

Code Fragment 2:

PreparedStatement updateSales = con.prepareStatement("UPDATE COFFEES SET SALES = ? WHERE COF_NAME LIKE ? ");
updateSales.setInt(1, 75);
updateSales.setString(2, "Colombian");
updateSales.executeUpdate();

setä¸çš„1å¯¹åº”½W¬ä¸€ä¸ªï¼Ÿ 2å¯¹åº”½W¬äºŒä¸ªï¼Ÿ åŒæ—¶æ³¨æ„ä½ set çš„ç±»åž?æ˜¯int˜q˜æ˜¯string å“ˆå“ˆå¾ˆç®€å•å§

åŽŸæ–‡å‡ºå¤„åQ?span style="font-family: Simsun; line-height: normal; font-size: medium; ">http://blog.csdn.net/spcusa/archive/2009/05/09/4164076.aspx

å¶æ¾æˆ?/a> 2010-12-14 13:58 å‘è¡¨è¯„è®º