stackoom
  简体   繁体   中英

Do I need a new query object for each MySQL statement?

 原文  2011-08-08 20:52:50       mysql/ coldfusion/ coldfusion-9

Question

I'm trying to compile several MySQL statements and execute them in the same request, but I keep getting a MySQL syntax error: 

local.sql = "";
for (local.i in this.hitArray)
{
    local.sql &= "UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = #local.i.postId#;";
}
local.service.setSQL(local.sql);

Raw SQL dump (local.sql var):

UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = 95;UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = 95;UPDATE posts SET viewCount = posts.viewCount + 1 WHERE posts.id = 95;

It appears the query is chocking right at the end of the first statement.

1 answers

solution1
 5 ACCPTED  2011-08-08 20:58:14

MySQL disables multiple statements by default to prevent sql injection. You must add the allowMultiQueries flag to your connection string to enable them.

Note: Obviously if you enable multiple statements, it is very important all of your queries use cfqueryparam or addParam because you are now at risk for sql injection.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Do I need the promise in my MySQL statement? Do I need to add something to each mysql query in order to use the mysql cache? mysql query returns object but I need String How do I include an IF statement in this MySQL query? MySQL - Do I need a nested query? Need to optimize MySQL query for IN statement I need an interval of 3 seconds to execute each mysql_query Do I need the array('%s', '%s') in a WordPress statement (query) or is obsolete? Do I need a php mysql connection in each function that uses database? MySql query and GROUP BY, what do I need to do differently?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM