发表新帖
发表新帖

Single and double quotes in Sql Server 2005 insert query

后端 未结
关注
3 1025
猫巷女王i
猫巷女王i 2021-01-29 08:48

There is single and double quotes in the address textbox .How can I insert into database. I am using SQL2005. My code is as follows...

str = \"exec sp_cust_reg \
3条回答
  • 庸人自扰
    庸人自扰 (楼主)
    2021-01-29 09:42

    You can also use Parameterized queries for giving the values, using the AddWithValue() of Parameters like

    SqlCommand cmd = new SqlCommand("dbo.sp_cust_reg",_connection);
cmd.CommandType= CommandType.StoredProcedure;

cmd.Parameters.AddWithValue("@TheDate",customer.Cust_Id);
cmd.Parameters.AddWithValue("@Cust_Name",customer.Cust_Name);

_connection.Open();
cmd.ExecuteNonQuery();
_connection.Close();

    Why I am telling to use AddWithValue is - you explicitly set the sqldb.type and SQL knows exactly the dbtype when passed.

    0 讨论(0)
 看不清?
提交回复
热议问题