Risks? You have experienced the risk: the query doesn't run so you have to fix it.
For most keywords, there is little chance of a keyword being confused with an identifier and still producing a valid query. Of course, you could come up with some arcane examples.
The fix is to escape the identifiers. MySQL uses backticks for escaping. Other databases use double quotes or square braces. So, there is another risk: the more you use backticks, the less portable your code is.
For me, the major reason is writability and readability. The backtick key is, on my keyboard, way off on the upper left where my little pinky has to reach far for it. I find reading the resulting code more cumbersome with lots of arcane characters floating around. For clarity, avoid escaping identifiers. Avoiding reserved words and using only letters, numbers, and underscore is quite sufficient.
There is another risk . . . that you will confuse single quotes with backticks. Then your query might have a constant where you think it has a column value. This confusion is one of the most common MySQL problems in this community.
在查询中的 order 周围使用反引号(`)。
例子:
SELECT *
FROM TableName
WHERE `order`='someval'
边注:
反引号用于表和列标识符,但仅当标识符是 MySQL 保留关键字,或者标识符包含空白字符或超出限制集的字符时才需要,通常建议避免使用保留关键字作为列或尽可能使用表标识符,避免引用问题。
对于以下情况,需要使用反勾号:
SELECT id, `my name`, `another field` , `field,with,comma`