我试图通过使用带有SqlConnection的参数化查询来避免在我的字符串变量中逃脱撇号,但它不工作。任何帮助,将不胜感激。防止参数查询逃逸撇号
更新:这是当前代码...
'Populate Connection Object
Dim oCnn As New SqlConnection(strConnection)
'Define our sql query
Dim sSQL As String = "INSERT INTO [" & foreignTable & "] (data_text) VALUES (@data_text) ; "
'Populate Command Object
Dim oCmd As New SqlCommand(sSQL, oCnn)
'Add up the parameter, associated it with its value
oCmd.Parameters.AddWithValue("@data_text", data_text)
'Opening Connection for our DB operation
oCnn.Open()
Try
Dim results As Integer = oCmd.ExecuteScalar
Catch ex As Exception
LabelImport.Text &= "<font color=red>ROOT Import ERROR: " & ex.ToString & ", From Database: " & dbName & ", Text String: " & data_text & "</font><br />"
Throw
End Try
oCnn.Close()
oCmd.Parameters.Clear()
感谢您的帮助。
IT现在可以工作,除了10条左右的记录以外,还有apostrphes – htm11h
@ marc11h您可以定义不适用于带撇号的10条记录吗?错误? – LarsTech
是的,给定的数量可以大得多,这是测试数据。 – htm11h