【发布时间】:2010-11-19 10:53:31
【问题描述】:
我正在通过 Flex 在 AIR 中开发一个应用程序,但我没有看到 SQLite 哪里出了问题(我已经习惯了 MySQL)。参数有效,但仅在某些情况下有效。这部分内置环卫系统是不是针对sql注入?感谢您的帮助!
作品:
sqlite
"INSERT :Fields FROM Category",其中参数为:Fields = "*"
as3
var statement:SQLStatement = new SQLStatement();
statement.connection = connection;
statement.text = "INSERT :Fields FROM Category";
statement.parameters[":Fields"] = "*";
statement.execute;
不起作用(“:Table”处的 SQL 语法错误):
sqlite
"INSERT :Fields FROM :Table",其中参数为:Fields = "*" and :Table = "Category"
as3
var statement:SQLStatement = new SQLStatement();
statement.connection = connection;
statement.text = "INSERT :Fields FROM :Table";
statement.parameters[":Fields"] = "*";
statement.parameters[":Table"] = "Category";
statement.execute;
【问题讨论】:
标签: apache-flex sqlite air