Information générale
Forum:
Microsoft SQL Server
>Hi All,
>
>Currently I am writing a visual foxpro program to write data / record to sql server. However there is a problem when I failed to update the sql table when there is " ' " in the string. Example: update the "21' lcd monitor"
While Sergeys answer is technically correct and directly to your question,
using parameterized SQL is something you should read up on -
it eliminates security risks as well - you have heard of SQL injection ?.
Précédent
Répondre
Voir le fil de ce thread
Voir le fil de ce thread à partir de ce message seulement
Voir tous les messages de ce thread
Voir tous les messages de ce thread à partir de ce message seulement