like语句防止SQL注入
mysql: select * from test where school_name like concat('%',${name},'%')
oracle: select * from test where school_name like '%'||${name},'%'
SQL Server:select * from test where school_name like '%'+${name},+'%'
若是本人原创文章,请标明:本文来自博客园,作者:huiy_小溪,转载请注明原文链接:https://www.cnblogs.com/huiy/p/7252579.html。
反之,请标明原创作者,文章链接,所属平台。
