Asp.net 拒绝执行ExecuteOnQuery:靠近'的语法不正确;(';
我试图将数据插入数据库,但它给了我一个错误: “(”附近的语法不正确 这是我的代码:Asp.net 拒绝执行ExecuteOnQuery:靠近'的语法不正确;(';,asp.net,sql-server,database,Asp.net,Sql Server,Database,我试图将数据插入数据库,但它给了我一个错误: “(”附近的语法不正确 这是我的代码: string username = Session["Session"].ToString(); con = new SqlConnection("Data Source=MICROSOF-58B8A5\\SQL_SERVER_R2;Initial Catalog=Daniel;Integrated Security=True"); con.Open();
string username = Session["Session"].ToString();
con = new SqlConnection("Data Source=MICROSOF-58B8A5\\SQL_SERVER_R2;Initial Catalog=Daniel;Integrated Security=True");
con.Open();
string knowWhichOne = "SELECT ID FROM Users WHERE Username='" + UserOrGuest.Text + "'";
SqlCommand comm = new SqlCommand(knowWhichOne, con);
int userID = (Int32)comm.ExecuteScalar();
knowWhichOne = "SELECT ClassID FROM Users WHERE Username='" + UserOrGuest.Text + "'";
comm = new SqlCommand(knowWhichOne, con);
int classID = (Int32)comm.ExecuteScalar();
knowWhichOne = "SELECT SchoolID FROM Users WHERE Username='"+UserOrGuest.Text + "'";
comm = new SqlCommand(knowWhichOne, con);
int schoolID = (Int32)comm.ExecuteScalar();
if (RadioWords.Checked == true)
{
game = 1;
}
else
{
game = 2;
}
string sqlqueryString = "INSERT INTO (GameID, UserID, LengthOfArray, NumberOfErrors, ClassID, SchoolID) VALUES (@GameID, @UserID, @LengthOfArray, @NumberOfErrors, @ClassID, @SchoolID)";
SqlCommand commandquery = new SqlCommand(sqlqueryString, con);
commandquery.Parameters.AddWithValue("GameID", game);
commandquery.Parameters.AddWithValue("UserID", userID);
commandquery.Parameters.AddWithValue("LengthOfArray", HowMany.Text);
commandquery.Parameters.AddWithValue("NumberOfErrors", 0);
commandquery.Parameters.AddWithValue("ClassID", classID);
commandquery.Parameters.AddWithValue("SchoolID", schoolID);
commandquery.ExecuteNonQuery();
con.Close();
我在调试模式下运行它,它接受所有内容,直到“ExecuteOnQuery();”行
有人知道我做错了什么吗
谢谢!您做到了:
INSERT INTO (GameID....
但我们应该这样做:
INSERT INTO tablename (GameID....
你做到了:
INSERT INTO (GameID....
但我们应该这样做:
INSERT INTO tablename (GameID....
INSERT INTO语句缺少要插入的表的名称。INSERT INTO语句缺少要插入的表的名称。INSERT INTO语句的语法不正确,因为您没有指定要插入的表 正确的语法是
INSERT INTO table_name (column1, column2, column3,...)
VALUES (value1, value2, value3,...)
请参阅:有关详细信息,insert into语句的语法不正确,因为您没有指定要插入的表 正确的语法是
INSERT INTO table_name (column1, column2, column3,...)
VALUES (value1, value2, value3,...)
请参阅:有关详细信息您的代码受SQL注入约束。请使用参数化查询进行选择。您的代码受SQL注入约束。请使用参数化查询进行选择。