擅长:python、mysql、java
<p>甚至python也容易受到SQL注入的影响,因此请使用参数化查询并避免python/SQL转义的复杂性:</p>
<pre><code> c.execute('DELETE FROM PATIENTS WHERE gender = %s', (e7.get()))
</code></pre>
<p>见<a href="https://dev.mysql.com/doc/connector-python/en/connector-python-example-cursor-select.html" rel="nofollow noreferrer">tutorial</a></p>