/// <summary> /// 修改类别 /// </summary> /// <param name="id">类别ID</param> /// <param name="caName">类别名称</param> /// <returns></returns> public static bool Update(CateGory ca) { bool flag = false; //使用参数化SQL防止SQL注入攻击 string sql = "update category set [name]=@name where id=@id"; SqlParameter[] paras = new SqlParameter[] { new SqlParameter("@name", ca.Name), new SqlParameter("@id", ca.ID) }; int result = SQLHelper.ExecuteNonQuery(sql, paras, CommandType.Text); if (result > 0) { flag = true; } return(flag); }
/// <summary> /// 修改类别 /// </summary> /// <param name="id">类别ID</param> /// <param name="caName">类别名称</param> /// <returns></returns> public static bool Update(CateGory ca) { return(CateGoryService.Update(ca)); }