C# 发生类型为“System.Data.OleDb.OLEDBEException”的未处理异常
我正在创建一个程序,其中用户将登录到系统,但它会出现如下错误 我还使用c编程语言和数据库中的Ms Access 这是我的全部密码C# 发生类型为“System.Data.OleDb.OLEDBEException”的未处理异常,c#,oledb,C#,Oledb,我正在创建一个程序,其中用户将登录到系统,但它会出现如下错误 我还使用c编程语言和数据库中的Ms Access 这是我的全部密码 using System; using System.Drawing; using System.Windows.Forms; using System.Threading; using System.Data.OleDb; using System.Drawing.Drawing2D; namespace Shakeys_Inventory_System {
using System;
using System.Drawing;
using System.Windows.Forms;
using System.Threading;
using System.Data.OleDb;
using System.Drawing.Drawing2D;
namespace Shakeys_Inventory_System
{
public partial class frmLogin : Form
{
private OleDbConnection cn = new OleDbConnection();
public frmLogin()
{
//SplashScreen
Thread t = new Thread(new ThreadStart(SplashStart));
t.Start();
Thread.Sleep(2500);
InitializeComponent();
this.BackColor = Color.White;
panel1.BackColor = Color.FromArgb(25, Color.Black);
t.Abort();
cn.ConnectionString = (@"Provider=Microsoft.ACE.OLEDB.12.0;Data Source=C: \Users\Raphael\Documents\Visual Studio 2015\Projects\Shakeys_Inventory_System\Shakeys_Inventory_System\ShakeysDatabase.accdb");
}
//Blurred Panel *START
protected override void OnPaint(PaintEventArgs e)
{
e.Graphics.DrawLine(Pens.Yellow, 0, 0, 100, 100);
}
public void SplashStart()
{
Application.Run(new frmSplashScreen());
}
public void DrawPath(Pen pen, GraphicsPath path)
{
}
private void frmLogin_Load(object sender, EventArgs e)
{
}
//Button Login Start
private void btn_Login_Click(object sender, EventArgs e)
{
cn.Open();
OleDbCommand cm = new OleDbCommand();
cm.Connection = cn;
cm.CommandText = "Select * from UsernameInfo where Username = '" +txt_Username.Text+ "' and password = '"+txt_Password.Text+"'";
OleDbDataReader odr = cm.ExecuteReader();
int cnt = 0;
while (odr.Read())
{
cnt++;
}
if (cnt == 1)
{
this.Hide();
frmHomepage fhp = new frmHomepage("Welcome:"+ txt_Username.Text);
fhp.ShowDialog();
}
else
{
MessageBox.Show("Username or Password is Incorrect!", "ERROR!",MessageBoxButtons.OK,MessageBoxIcon.Error,MessageBoxDefaultButton.Button1);
}
cn.Close();
}
//Button Quit *Start
private void btn_Quit_Click(object sender, EventArgs e)
{
DialogResult Result1 = MessageBox.Show("Do you want to CLOSE the program?", "Warning!",MessageBoxButtons.YesNo,MessageBoxIcon.Question);
if (Result1 == DialogResult.Yes)
{
Application.Exit();
}
}
}
}
cn.ConnectionString = (@"Provider=Microsoft.ACE.OLEDB.12.0;Data Source=C: \Users\Raphael\Documents\Visual Studio 2015\Projects\Shakeys_Inventory_System\Shakeys_Inventory_System\ShakeysDatabase.accdb");
谢谢你的帮助 ?字符是参数所在位置的占位符
cm.CommandText = "Select * from UsernameInfo where Username = ? and password = ?";
cm.Parameters.AddWithValue( "parmUserName", txt_Username.Text );
cm.Parameters.AddWithValue( "parmPassword", txt_Password.Text );
OleDbDataReader odr = cm.ExecuteReader();
"Select * from UsernameInfo where Username = '" +txt_Username.Text+ "' and password = '"+txt_Password.Text+"'";
txt_Username.Text = "O'Brien"
txt_Password.Text = "it's ok"
Select * from UsernameInfo where Username = 'O'Brien' and password = 'it's ok'
Select * from UsernameInfo where Username = ? and password = ?
cm.Parameters.AddWithValue( "parmUserName", txt_Username.Text );
cm.Parameters.AddWithValue( "parmPassword", txt_Password.Text );
Select * from UsernameInfo where Username = [value of first parameter] and password = [value of second parameter]
Select * from UsernameInfo where Username = 'O'Brien' and password = 'it's ok'
更有意义吗?代码抛出错误的是哪一行?我为什么会出错?仅仅给出异常类型是不够的。您需要提供异常的消息,最好是堆栈跟踪。抛出的exception.WIDE-OPEN TO SQL注入上的任何内部异常也是如此。把你的问题参数化。奈克斯·特伦爵士,在cn.Open一行;在我的btn代码中_login@raphaelmendoza,有关参数和sql注入的说明,请参见修订的答案。