>sc.CommandText = "Insert into bob (xyz, abc) VALUES ( '" + sValue1 + "','" + sValue2 + "' )"; >sc.ExecuteNonQuery(); >>
>>>sc.CommandText = "Insert into bob (xyz, abc) VALUES ( @xyz, @abc )"; >>>sc.Parameters.Clear(); >>>sc.Parameters.Add("@xyz", Row["xyz"]); >>>sc.Parameters.Add("@abc", Row["abc"]); >>>sc.ExecuteNonQuery(); >>>>
>>>sc.CommandText = "Insert into bob (xyz, abc) VALUES ( @xyz, @abc )";
>>>sc.ExecuteNonQuery();
>>
>>>>"Insert into bob (xyz, abc) VALUES ( @xyz, @abc )";
>>
>>>>sc.Parameters.Clear(); >>sc.Parameters.Add("@xyz", Row["xyz"]); >>sc.Parameters.Add("@abc", Row["abc"]); >>>>