用户登录的验证,对你们来说太初级了!解决方案
日期:2014-05-18 浏览次数:20456 次
用户登录的验证,对你们来说太初级了!
请查找错误。
protected void ImageButton1_Click(object sender, ImageClickEventArgs e)
{
string UserName = Request.Form["UserName"];
string Password = Request.Form["Password"];
//ACCESS数据库的连接字符串
string strConn = @"Provider=Microsoft.Jet.OLEDB.4.0 ;Data Source="+Server.MapPath(".\\DataBase\\#wulong.mdb");
//生成一个新的连接
OleDbConnection myConn = new OleDbConnection(strConn);
myConn.Open();
string sql = "select * from users where username=@UserName and Password=@Password";
OleDbCommand myComm = new OleDbCommand(sql, myConn);
OleDbDataReader dr = myComm.ExecuteReader();
if(dr.HasRows){
Response.Write("成功");
}else{
Response.Write("失败");
}
}
------解决方案--------------------
string sql = "select * from users where username=@UserName and Password=@Password";
存在安全问题
------解决方案--------------------
你抱啥错误?
------解决方案--------------------
string sql = "select * from users where username='"+UserName+"' and Password='"+Password+"'";
请查找错误。
protected void ImageButton1_Click(object sender, ImageClickEventArgs e)
{
string UserName = Request.Form["UserName"];
string Password = Request.Form["Password"];
//ACCESS数据库的连接字符串
string strConn = @"Provider=Microsoft.Jet.OLEDB.4.0 ;Data Source="+Server.MapPath(".\\DataBase\\#wulong.mdb");
//生成一个新的连接
OleDbConnection myConn = new OleDbConnection(strConn);
myConn.Open();
string sql = "select * from users where username=@UserName and Password=@Password";
OleDbCommand myComm = new OleDbCommand(sql, myConn);
OleDbDataReader dr = myComm.ExecuteReader();
if(dr.HasRows){
Response.Write("成功");
}else{
Response.Write("失败");
}
}
------解决方案--------------------
string sql = "select * from users where username=@UserName and Password=@Password";
存在安全问题
------解决方案--------------------
你抱啥错误?
------解决方案--------------------
string sql = "select * from users where username='"+UserName+"' and Password='"+Password+"'";
免责声明: 本文仅代表作者个人观点,与爱易网无关。其原创性以及文中陈述文字和内容未经本站证实,对本文以及其中全部或者部分内容、文字的真实性、完整性、及时性本站不作任何保证或承诺,请读者仅作参考,并请自行核实相关内容。
