how to insert special character as a part of name in database

Question

0.00/5 (No votes)

See more:

hello

Currently i have one form name Add Category where i have one field name : Add Category_textbox: where i insert alpha characters (i.e. a-z OR A-Z).All the alpha character successfully stores in database. but when i try with another character apostrophe (') to be inserted in database.example: O'Really then the message comes like this:

Incorrect syntax near 'really'.
unclosed quotation mark after the character string".

i am using sql server as database.

plz help me out

Posted 26-Jul-11 6:23am

rbnsubedi

Add a Solution

4 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

**Orcun Iyigun** · Answer 1 · 2011-07-26T06:34:00

The single quote is its own escape character. So you would use 2 in a
string, to signify to treat it as 1 literal single quote.
But instead I suggest you to use parameterized queries to avoid this problem.
You should always use it to prevent SQL injection
attacks that is the most important reason for it.

The solution to your problem is in this link[^].

But check out these links as well;
SQL injection[^]
Using SQL Escape Sequences[^]
how does one escape special characters when writing sql queries[^]

Mehul M Thakkar · Answer 2 · 2011-07-26T07:03:00

You can create an insert query with defining parameters in sqlcommand:

SQLCommand cmd = new SQLCommand("Insert into Category(id, name) values(@id, @name)" , con);

Where con is the SQLConnection object.

You can define parameters as follows:

SQLParamter param1 = new SQLParamter("@id","1");
SQLParamter param2 = new SQLParamter("@name","O'Really");

Add the parameters in above SQLCommand:

cmd.Parameters.add(param1);
cmd.Parameters.add(param2);

Execute the command:

cmd.ExecuteNonQuery();

Hope this will help you.

crescent_fresh_sock · Answer 3 · 2011-07-26T06:29:00

Solution 1

If you are inserting a single quote into a sql server database, you need to pair it with a second single quote to escape it (only one single quote will be stored). So if you are trying to insert "string'", you need to change it to "string''".

Posted 26-Jul-11 6:29am

crescent_fresh_sock

_Zorro_ · Answer 4 · 2011-07-26T06:30:00

Solution 2

You could try 'double single-quoting' :)

Try this (notice the double single-quote):

INERT INTO YourTable(Column1) VALUES(O''Really)

Hope it helps.

http://stackoverflow.com/questions/2029307/t-sql-escape-quote-character[^]

Posted 26-Jul-11 6:30am

_Zorro_

how to insert special character as a part of name in database

4 solutions

Solution 3

Solution 4

Solution 1

Solution 2

Add your solution here

Preview 0