C# Can';t在C中向数据库发送正确的值#
我有一个C#(WindowsForm)应用程序,我想在数据库中插入值 我在数据库中插入的信息是产品名称、产品类别和成本,以十进制(5,2)表示 但是,当我尝试插入像1,90这样的值时,它只插入1,00。我想说的是,它只在逗号前插入数字,然后在逗号后加两个零 我已尝试使用此代码:C# Can';t在C中向数据库发送正确的值#,c#,mysql,decimal,C#,Mysql,Decimal,我有一个C#(WindowsForm)应用程序,我想在数据库中插入值 我在数据库中插入的信息是产品名称、产品类别和成本,以十进制(5,2)表示 但是,当我尝试插入像1,90这样的值时,它只插入1,00。我想说的是,它只在逗号前插入数字,然后在逗号后加两个零 我已尝试使用此代码: decimal varcost = costprod.Value; MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name,
decimal varcost = costprod.Value;
MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name, cost, id_category) VALUES ('" + nameprod.Text + "','" + varcost + "'," + getidcat + ")");
decimal varcost = costprod.Value;
MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name, cost, id_category) VALUES ('" + nameprod.Text + "'," + varcost + "," + getidcat + ")");
decimal varcost = costprod.Value;
MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name, cost, id_category) VALUES ('" + nameprod.Text + "','" + varcost + "'," + getidcat + ")");
decimal varcost = costprod.Value;
MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name, cost, id_category) VALUES ('" + nameprod.Text + "'," + varcost + "," + getidcat + ")");
编辑: 现在我尝试使用不同的代码:
string getidcat = catprod.SelectedItem.ToString();
try
{
decimal varpreco = precoprod.Value;
string varnome = nomeprod.Text;
MySqlConnection mConn = new MySqlConnection("Persist Security Info=False;server = localhost; port=3307; database = startselling; user = root; password ='usbw';");
var sqlCommand = "INSERT INTO produtos (designacao, preco_unitario, id_categoria) VALUES ('@nome', @preco, (select id_categoria FROM categorias WHERE designacao = @categoria)";
//Create mysql command and pass sql query
using (var command = new MySqlCommand(sqlCommand, mConn))
{
command.Parameters.AddWithValue("@nome", varnome);
command.Parameters.AddWithValue("@preco", varpreco);
command.Parameters.AddWithValue("@categoria", getidcat);
mConn.Open();
command.ExecuteNonQuery();
mConn.Close();
}
MessageBox.Show("Succeeded");
}
catch (Exception ex)
{
MessageBox.Show(ex.Message);
}
如果有人能帮助我,我将不胜感激。下面的代码是如何为命令添加参数的
MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name, cost, id_category) VALUES (@nameprod, @varcost, @getidcat)";
command_addprod.Parameters.AddWithValue("@nameprod", nameprod.text);
command_addprod.Parameters.AddWithValue("@varcost", varcost);
command_addprod.Parameters.AddWithValue("@getidcat", getidcat);
下面的代码是如何为命令添加参数
MySqlCommand command_addprod = new MySqlCommand("INSERT INTO products (name, cost, id_category) VALUES (@nameprod, @varcost, @getidcat)";
command_addprod.Parameters.AddWithValue("@nameprod", nameprod.text);
command_addprod.Parameters.AddWithValue("@varcost", varcost);
command_addprod.Parameters.AddWithValue("@getidcat", getidcat);
参数。阅读它们,使用它们,甚至学会爱它们。他们会在你还不知道什么是SQL注入之前解决你在输入格式方面的所有问题,并阻止SQL注入。哈哈,好吧!我会更多地了解他们,学会如何去爱他们!ThanksIt似乎是数字和小数的逗号分隔符造成了混乱。另外,请确保要存储成本的数据库中的列类型具有最多3个十进制存储配置。我已经注意到问题出现在逗号分隔符中…数据库具有十进制(5,2),因为我只需要2个十进制大小写。。(有些问题不适用于MySQL而不是SQL Server,但有些问题确实适用。)指定参数的实际类型,包括精度。如果将
十进制十进制十进制十进制