A sql injection error, can someone please solve it?-PHP Chinese Network Q&A

Article Topic Learning Download Q&A Programming Dictionary Game Recent Updates

简体中文(ZH-CN) English(EN) 繁体中文(ZH-TW) 日本語(JA) 한국어(KO) Melayu(MS) Français(FR) Deutsch(DE)

A sql injection error, can someone please solve it?

冥冥之中天注定 2017-09-27 15:04:34

1169

1064 - You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'CREATE TABLE `dc_addons_access`(

`user_id` int(10) NOT NULL,

`addon` varchar' at line 3

CREATE TABLE `dc_addons_access`(

`user_id` int(10) NOT NULL,

`addon` varchar(50) NOT NULL,

`mpid` int(10) NOT NULL,

`status` tinyint(1) DEFAULT NULL,

) ENGINE=InnoDB DEFAULT CHARSET=utf8;

这是注册数据库表的其中一个表

冥冥之中天注定

reply all (1)

ringa_lee2017-09-27 15:20:51 1 floor

`status` tinyint(1) DEFAULT NULL,

Remove the last comma

Like+0

Add Reply

reply That one was added after the error was reported. It couldn't be injected without a comma before, which is very annoying! Why don't you add me on QQ and I'll send you this SQL, and then you can register and take a look. I'm a newbie and I couldn't solve this problem all morning 1548 5266

冥冥之中天注定 author 2017-09-27 15:23:42

reply This is a sql file to create a table. Even if the comma is removed, an error message will appear. Only one table can be registered, but a lot of the following tables cannot be registered. What is your QQ? Can I send you the sql file for you to take a look at?

冥冥之中天注定 author 2017-09-27 19:31:24

reply I ran your statement locally. As long as I removed the last comma (`status` tinyint(1) DEFAULT NULL), it ran successfully!

ringa_lee author 2017-09-27 15:55:09

reply You just need to put this statement in the Mysql command line to run it. There is no need to put it in a file.

ringa_lee author 2017-09-27 21:56:34