Re: Execute the insert command with boolean
From: Davide Vernole [MVP] (davide_at_online.knodev.com)
Date: 10/12/04
- Next message: Kenneth Keeley: "uniqueidentifier in SQL Query"
- Previous message: ESPN Lover: "Re: Which way is best to read from a file?"
- In reply to: Ken Cox [Microsoft MVP]: "Re: Execute the insert command with boolean"
- Next in thread: nicholas: "Re: Execute the insert command with boolean"
- Reply: nicholas: "Re: Execute the insert command with boolean"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 13 Oct 2004 01:50:54 +0200
Ken Cox [Microsoft MVP] <BANSPAMken_cox@sympatico.ca> typed:
> It looks like the Boolean field is being inserted as a string. You
> may need to drop the apostrophe on either side and use something like
>
> contentavailable.Checked.ToString
>
Just to remember you that it's better to don't use this kind of SQL
Statement in your code. Your application risk SQL Injection attacks (see
this useful article:
http://msdn.microsoft.com/msdnmag/issues/04/09/SQLInjection/)
Don't forget to review your code to avoid SQL Injection ;-)
-- Davide Vernole MVP ASP/ASP.NET Microsoft Certified Solution Developer
- Next message: Kenneth Keeley: "uniqueidentifier in SQL Query"
- Previous message: ESPN Lover: "Re: Which way is best to read from a file?"
- In reply to: Ken Cox [Microsoft MVP]: "Re: Execute the insert command with boolean"
- Next in thread: nicholas: "Re: Execute the insert command with boolean"
- Reply: nicholas: "Re: Execute the insert command with boolean"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
