win8.1官方原版镜像:WHERE Id =" + Replace(Command1__MM_hits, "'", "''") + " "
来源:百度文库 编辑:高校问答 时间:2024/04/28 04:28:17
WHERE Id =" + Replace(Command1__MM_hits, "'", "''") + " "
这句话谁能 详细详细的 讲解一下,
其中MM_hits是我设置的变量MM_hits=request(“id”)
这句话谁能 详细详细的 讲解一下,
其中MM_hits是我设置的变量MM_hits=request(“id”)
就是将Command1__MM_hits中所有‘换成“”,
这样作是为了防止有人注入攻击
sqldel="delete from book where id="&request("id")
WHERE Id =" + Replace(Command1__MM_hits, "'", "''") + " "
sql="select * from spzs where id="+cstr(id)+" order by id desc" 意思
sql="select * from exam_subject where id="& cint(id(j))是什么意思?
sql="select * from main where id="&id 这句啥意思
sql="select * from main where id="&id 这句啥意思
where i_uid=" & where i_uid=" & request.QueryString("id"),conn,1,1 这句是什么意思
strsql="select*from user where usern=usern order by id" 这一句哪错了???
这句不对么?sql="select*form main where id ="+idx
zctk=conn.execute("Select shuoming from [data] where id=45")(0)