Microsoft OLE DB Provider for SQL Server error '80040e14' Incorrect syntax near '='
Question
I get this error when i try to retrieve the data from database using the following piece of code.
Can someone help?
set rs = Server.CreateObject("ADODB.recordset")
sql = " SELECT * from COMPANY WHERE COMPANY_ID = " & Request.Form("CompanyId")
rs.Open sql, cnn
1 answers
solution1
5 ACCPTED 2014-11-05 06:47:34
First of all, this is bad practice to do ad-hoc queries without using parameters. SQL Injection attack info: http://en.wikipedia.org/wiki/SQL_injection
To answer the question, though, you need to have single quotes around your varchar or char value that you are searching for.
set rs = Server.CreateObject("ADODB.recordset")
sql = " SELECT * from COMPANY WHERE COMPANY_ID = '" & Request.Form("CompanyId") & "'"
rs.Open sql, cnn
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Microsoft OLE DB Provider for SQL Server error '80040e14' Invalid column name . SQL query
Microsoft OLE DB Provider for SQL Server error '80040e14' Could not find stored procedure
Microsoft OLE DB Provider for SQL Server error '80040e14'
SQL Server error '80040e14' incorrect syntax on SQL Server 2012
Run-time error' -2147217900 (80040e14)': Incorrect syntax near '1'
SQL Server error '80040e14' Ambiguous column name
Microsoft OLE DB Provider for SQL Server error '80040e09'
Microsoft OLE DB Provider for SQL Server error '80040e07'
VBA ADODB error (80040e14) when trying to retrieve data from SQL Server
SQL Server error 80040e14 Using Classic ASP in a Result Set
Related Tags