堆栈内存溢出
  简体   繁体   English

每个MySQL语句是否需要一个新的查询对象?

[英]Do I need a new query object for each MySQL statement?

 原文  2011-08-08 20:52:50       mysql/ coldfusion/ coldfusion-9

问题描述

I'm trying to compile several MySQL statements and execute them in the same request, but I keep getting a MySQL syntax error: 我正在尝试编译几个MySQL语句并在同一请求中执行它们,但是我不断收到MySQL语法错误: 

local.sql = "";
for (local.i in this.hitArray)
{
    local.sql &= "UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = #local.i.postId#;";
}
local.service.setSQL(local.sql);

Raw SQL dump (local.sql var): 原始SQL转储(local.sql var):

UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = 95;UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = 95;UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = 95;

It appears the query is chocking right at the end of the first statement. 似乎查询在第一个语句的末尾令人cho目结舌。

1 个解决方案

解决方案1
 5 已采纳  2011-08-08 20:58:14

MySQL disables multiple statements by default to prevent sql injection. MySQL默认情况下禁用多个语句以防止sql注入。 You must add the allowMultiQueries flag to your connection string to enable them. 您必须将allowMultiQueries标志添加到连接字符串以启用它们。

Note: Obviously if you enable multiple statements, it is very important all of your queries use cfqueryparam or addParam because you are now at risk for sql injection. 注意:显然,如果启用多个语句,则所有查询都使用cfqueryparam或addParam是非常重要的,因为您现在有进行SQL注入的风险。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 我的MySQL陈述中需要诺言吗? - Do I need the promise in my MySQL statement? 是否需要为每个mysql查询添加一些内容才能使用mysql缓存? - Do I need to add something to each mysql query in order to use the mysql cache? MySQL查询返回对象,但我需要字符串 - mysql query returns object but I need String 如何在此 MySQL 查询中包含 IF 语句? - How do I include an IF statement in this MySQL query? MySQL-我需要嵌套查询吗? - MySQL - Do I need a nested query? 需要针对IN语句优化MySQL查询 - Need to optimize MySQL query for IN statement 我需要3秒的间隔来执行每个mysql_query - I need an interval of 3 seconds to execute each mysql_query 我是否需要 WordPress 语句(查询)中的数组 ('%s', '%s') 或已过时? - Do I need the array('%s', '%s') in a WordPress statement (query) or is obsolete? 在每个使用数据库的函数中我都需要一个 php mysql 连接吗? - Do I need a php mysql connection in each function that uses database? MySql查询和GROUP BY,我需要做些什么不同的事情? - MySql query and GROUP BY, what do I need to do differently?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM