"UPDATE LOGIN set USER = ('" & txtUser.Text & "'), PASS = ('" & txtPass.Text & "'), RIGHTS = ('" & cmbRights.Text & "') where ID = " & txtID.Text
Why are you enclosing provided values between brackets
(
and
)
? The SQL syntax is wrong.
The real syntax is
"UPDATE LOGIN set USER = 'username', PASS = 'pass', RIGHTS = 'rights' where ID = id
BUT:
As told you in solution 1,
never build SQL strings by concatenating values obtained from user input. This is the issue that you should fix first.
Plus, you should not store passwords in clear text, either.