关于ADO .NET sql参数化模糊查询

错误写法:

MySqlConnection conn = new MySqlConnection(connString);

string sql="select * from user where FullName like '%@fullname%' ";

using (MySqlCommand cmd = new MySqlCommand(sql, conn))
{
MySqlParameter parameter = new MySqlParameter("@fullname", FullName);
cmd.Parameters.Add(parameter);

}

正确写法

MySqlConnection conn = new MySqlConnection(connString);

string sql="select * from user where FullName like @fullname ";

using (MySqlCommand cmd = new MySqlCommand(sql, conn))
{
MySqlParameter parameter = new MySqlParameter("@fullname", "%"+FullName+ "%" );
cmd.Parameters.Add(parameter);

}

posted @ 2021-08-20 14:56 奇迹之耀阅读(91) 评论(0) 编辑收藏举报

刷新页面返回顶部

奇迹之耀

关于ADO .NET sql参数化模糊查询

公告