Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Averyanalex2020-06-10 11:54:06
MySQL
Averyanalex, 2020-06-10 11:54:06

How to protect against sql injection in PyMySQL?

Searched, did not find. Everyone writes what SQL injections are and how to protect against them in php using mysql_real_escape_string or something similar. I'm making a bot that saves some data in MariaDB. It seems that you can protect yourself by shielding - what and how to shield? What characters to replace? Send data separately from SQL query - how is it done in PyMySQL? Please help, otherwise soon someone will change the language to "ru'; DROP TABLE guilds;" ;)

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
S
Sergey Tikhonov, 2020-06-10
@Averyanalex

cursor.execute(sql="SELECT %s", params=(1,))
That's all the magic.

Report
A
Averyanalex, 2020-06-10
@Averyanalex

Thank you so much, but it will be correct here
cursor.execute("SELECT %s", (1,))
He swears at unknown sql

Similar questions
R
Rooly2021-03-23 11:40:40
How to properly organize apiResource Laravel? 2Reply
A
Anholle2019-09-09 11:37:42
How to set up a filter in the feedback form? 0Reply
M
matros972017-04-20 10:07:09
The text does not fit into the block? 4Reply
G
GhostMath2022-02-09 15:51:25
How to solve the problem of non-synchronous clock frequency on hydraulic motors? 4Reply
V
vldanch2018-12-19 22:59:56
How to write ai? 6Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question