更新时间:2022-05-13 21:49:34
如果您将html作为普通文本处理,并且使用参数,那么您应该很安全.
对于数据类型,您可以使用文本.有关更多信息,请参见: http://dev.mysql.com/doc/refman/5.0/en /blob.html [^ ]
If you''re handling the html as normal text and using parameters then you should be quite safe.
For the data type you can use text. For more info see: http://dev.mysql.com/doc/refman/5.0/en/blob.html[^]
使用html编码,可能会转换为base64字符串
它会使我的网站变得脆弱吗?是的.可以注入Javascript.
我应该为需要保存html格式的特定字段选择哪种数据类型. =会成为Blob
Use html encoding and may be convert to base64 string
will it make my site vulnerable or not? Yes. Javascript injection is possible.
And What data type should I choose for that particular field in which I need to save my html formatting. = Would be a blob