sql insert double to database [Archive]

Click to See Complete Forum and Search --> : sql insert double to database

daniel50096230

October 15th, 2009, 02:17 AM

In my vb.net code, I had the following code:

sql = "INSERT INTO Trn_BranchReportTop ([SellerID],[BranchGLN],[BranchName],[Total]) VALUES('" + Session.Item("UserCompanyID") + "','" + BranchGLN + "','" + Name + "','" + dsPOTrailers.Tables(0).Rows(0).Item("Cost").ToString() + "' )) "
objDB.ExecuteNonQuery(sql)

How should I change so that the dsPOTrailers.Tables(0).Rows(0).Item("Cost").ToString() can be insert to the database which is double datatype in the database.

VSNetNewb

October 15th, 2009, 01:56 PM

Try something like:

sql = "INSERT INTO Trn_BranchReportTop ([SellerID],[BranchGLN],[BranchName],[Total]) VALUES('" + Session.Item("UserCompanyID") + "','" + BranchGLN + "','" + Name + "','" + CType(dsPOTrailers.Tables(0).Rows(0).Item("Cost").ToString(),Double) + "' )) "

CType will convert data types. I think this should work for you.

dglienna

October 16th, 2009, 08:58 PM

You should always use STORED PROCEDURES to interact with the DB. If you have to use a query, make sure that it's a PARAMETERIZED QUERY, to prevent SQL INJECTION