源代码:
sql = """ UPDATE t_datav SET info ="%s" WHERE category ="mock" """ % (res)
改后:
sql=""" UPDATE t_datav SET info ="%s" WHERE category ="mock" """%(pymysql.escape_string(res) )
源代码:
sql = """ UPDATE t_datav SET info ="%s" WHERE category ="mock" """ % (res)
改后:
sql=""" UPDATE t_datav SET info ="%s" WHERE category ="mock" """%(pymysql.escape_string(res) )