python-day11 pymysql
python 操做 mysqlpython
#######selectmysql
import pymysql
# 獲取數據
conn = pymysql.Connect(host='192.168.12.89',port=3306,user='root',password="123",database="s17day11db",charset='utf8')
cursor = conn.cursor()
# 受影響的行數
v = cursor.execute('select * from student')
result = cursor.fetchall()
# result = cursor.fetchone()
# result = cursor.fetchmany(2)
print(result)
cursor.close()
conn.close()
###########othersql
# 獲取數據
conn = pymysql.Connect(host='192.168.12.89',port=3306,user='root',password="123",database="s17day11db",charset='utf8')
cursor = conn.cursor()
# 受影響的行數
v = cursor.execute('insert into userinfo(username,password) values(%s,%s)',['eric','99999'])
conn.commit()
v = cursor.execute('delete from userinfo where username=%s',['eric'])
conn.commit()
v = cursor.execute('update userinfo set password=%s where username=%s',['999999','alex'])
conn.commit()
cursor.close()
conn.close()
#################需求
新建立一個班級,而且 建立一個學生 加入這個班級
import pymysql
# 獲取數據
conn = pymysql.Connect(host='192.168.12.89',port=3306,user='root',password="123",database="s17day11db",charset='utf8')
cursor = conn.cursor()
cursor.execute('insert into class(caption) values(%s)',['新班級'])
conn.commit()
new_class_id = cursor.lastrowid # 獲取新增數據自增ID
cursor.execute('insert into student(sname,gender,class_id) values(%s,%s,%s)',['李傑','男',new_class_id])
conn.commit()
cursor.close()
conn.close()
解釋:能夠經過cursor.lastrowid 獲取到 本腳本中執行的 自增ID
而後放入嚇一條sql中
#####################################被sql注入的寫法, 以及 sql注入
import pymysql
user = input('請輸入用戶名:')
pwd = input('請輸入密碼:')
# 獲取數據
conn = pymysql.Connect(host='192.168.12.89',port=3306,user='root',password="123",database="s17day11db",charset='utf8')
cursor = conn.cursor()
sql = 'select * from userinfo where username="%s" and password="%s" ' %(user,pwd,)
# user = alex" --
# pwd= asdf
'select * from userinfo where username="alex" -- " and password="sdfsdf"'
# user = asdfasdf" or 1=1 --
# pwd= asdf
'select * from userinfo where username="asdfasdf" or 1=1 -- " and password="asdfasdf"'
v = cursor.execute(sql)
result = cursor.fetchone()
cursor.close()
conn.close()
print(result)
###################防止sql注入
import pymysqluser = input('請輸入用戶名:')pwd = input('請輸入密碼:')# 獲取數據conn = pymysql.Connect(host='192.168.12.89',port=3306,user='root',password="123",database="s17day11db",charset='utf8')cursor = conn.cursor()sql = 'select * from userinfo where username="%s" and password="%s" ' %(user,pwd,)# user = alex" --# pwd= asdf'select * from userinfo where username="alex" -- " and password="sdfsdf"'# user = asdfasdf" or 1=1 --# pwd= asdf'select * from userinfo where username="asdfasdf" or 1=1 -- " and password="asdfasdf"'v = cursor.execute(sql)result = cursor.fetchone()cursor.close()conn.close()print(result)
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
- 1. 在windows下的虛擬機中,安裝華爲電腦的deepin操作系統
- 2. 強烈推薦款下載不限速解析神器
- 3. 【區塊鏈技術】孫宇晨:區塊鏈技術帶來金融服務的信任變革
- 4. 搜索引起的鏈接分析-計算網頁的重要性
- 5. TiDB x 微衆銀行 | 耗時降低 58%,分佈式架構助力實現普惠金融
- 6. 《數字孿生體技術白皮書》重磅發佈(附完整版下載)
- 7. 雙十一「避坑」指南:區塊鏈電子合同爲電商交易保駕護航!
- 8. 區塊鏈產業,怎樣「鏈」住未來?
- 9. OpenglRipper使用教程
- 10. springcloud請求一次好用一次不好用zuul Name or service not known