>>>Yes, but think of how many places it takes to apply this - literally every field out there which may contain an apostrophe. Do this
>>>
cSqlInsert = "INSERT INTO EMAILSEND (FROM_NAME, FROM_EMAIL, TO_EMAIL) values " + ;
>>> "(?lcSendName, ?lcSenderEmail, ?lcRecipientEmail)"
>>>and Fox will handle the escaping, putting dates/datetimes, logicals and everything else into proper format. Just make sure the variables are in scope when the actual sqlexecute() happens.
>>
>>This is a good approach. But it would require quite a few/many changes in my code. Because, as you correctly said, the variable should be in scope.
>>Thank you.
>
>Changes are inevitable, as you find more and more places where a string value may contain an apostrophe... Once you start looking, you'll be amazed how many you'll find. So do this in the places you find - if you have to change, change to simpler. Makes life easier.
You are right. I just took the time (about 10 minutes) and made the change. You owe me 10 minutes :)
Thank you.
"The creative process is nothing but a series of crises." Isaac Bashevis Singer
"My experience is that as soon as people are old enough to know better, they don't know anything at all." Oscar Wilde
"If a nation values anything more than freedom, it will lose its freedom; and the irony of it is that if it is comfort or money that it values more, it will lose that too." W.Somerset Maugham