4 Replies
A suggestion. You could create a console app to isolate your issue and tinker with it. I can see that you're getting fairly descriptive error message.
$sqlinjection
Always parameterize queries!
https://i.imgur.com/uePzr0S.jpeg
Do not concatenate the query, example:
But instead always parameterize your queries. Look up the documentation for said Database library. If you are using
System.Data.SqlClient refer to this https://learn.microsoft.com/en-us/dotnet/api/system.data.sqlclient.sqlcommand.parameters?view=dotnet-plat-ext-7.0#examplesWas this issue resolved? If so, run
/close - otherwise I will mark this as stale and this post will be archived until there is new activity.