and or 混用

and or 混用

and 优先级  > or

1,SELECT * from managers WHERE `name` = 'admin' OR 1=1 and `password`='admin1111'

相当于 SELECT * from managers WHERE `name` = 'admin' OR （1=1 and `password`='admin1111'）  

能查出 name = admin 这一条数据    //因为name=admin 为真  （1=1 and `password`='admin1111'） 为假 or是或者

1,SELECT * from managers WHERE `name` = 'admin'  and `password`='admin1111'  OR 1=1 

相当于 SELECT * from managers WHERE ( `name` = 'admin'  and `password`='admin1111')  OR 1=1 

能查出所有数据，因为前面为假，但是后面的1=1却永远为真

本栏目推荐文章
• CF414B - Mashmokh and ACM
• Center-based 3D Object Detection and Tracking
• MIUI EU ROM install and upgrade
• CF1284E New Year and Castle Construction
• 2023 United Kingdom and Ireland Programming Contest (UKIEPC 2023)
• HDU #6664. Andy and Maze 题解--zhengjun
• CF678F Lena and Queries题解
• 【LeetCode 】练习str_to_date函数；over(rows between CURRENT ROW AND 2 following)实现【当月和接下来2个月】滑动窗口
• [翻译]-Query and Transaction size in MySQL
• CDS Virtual Entities with Dynamics 365 Finance and Operations