mysqli:
i 代表improvement,提供了相对进阶的功能,也增加了安全性。
mysql:
$location = '北京';
$result = mysql_query( " select name from user where location = ' $location ' " );
Q:$location很容易被SQLInjection(SQL注入);
mysqli:
$u_name = $_POST('name');
$u_age = $_GET('age');
$u_gender = $_GET('gender');
$u_location = $_GET('location');
$sql = "insert into user(name,age,gender,location) values(?,?,?,?);";
$stmt = $mysqli_prepare($sql);
$stmt->bind_param('sdss',$u_name,$u_age,$u_gender,$u_location);
$stmt->execute();