我的Count Query asp.net有什么问题
[英]What's wrong with my Count Query asp.net
问题描述
Public state_name as String
state_name = Textbox1.Text
Dim constr As String = ConfigurationManager.ConnectionStrings("ApplicationServices").ConnectionString
Dim query As String = "SELECT Count(cities) FROM state_table WHERE state_name=" & state_name
Using conn As New SqlConnection(constr)
Using comm As New SqlCommand()
conn.Open()
With comm
.Connection = conn
.CommandText = query
.CommandType = CommandType.Text
End With
Dim count As Int16 = Convert.ToInt16(comm.ExecuteScalar())
Label1.Text = count
End Using
End Using
代码显示错误
无效的列名“加利福尼亚”。
但是, California已经存在于我的State列表中,我想计算所有在State表中输入的state_name= california下的城市。
我希望输出为
California (3)
2 个解决方案
解决方案1
2 2015-10-06 15:03:27
您想使用参数化查询来避免SQL注入。
Dim constr As String = ConfigurationManager.ConnectionStrings("ApplicationServices").ConnectionString
Dim query As String = "SELECT Count(cities) FROM state_table WHERE state_name=@State_Name"
Using conn As New SqlConnection(constr)
Using comm As New SqlCommand()
conn.Open()
With comm
.Connection = conn
.CommandText = query
.CommandType = CommandType.Text
.Parameters.AddWithValue("@State_Name", state_name)
End With
Dim count As Int16 = Convert.ToInt16(comm.ExecuteScalar())
Label1.Text = count
End Using
End Using
解决方案2
1 2015-10-06 14:49:35
因为您没有用引号将变量引起来。 "state_name = '" + state_name + "'"
但是,您应该改用参数。
ASP.NET图表:我的web.config有什么问题。 我无法显示图表
[英]ASP.NET Chart: What's wrong with my web.config. I can't display a chart
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.