hello,
I agree with the post above, the current code is open to
SQL Injection.[
^]
Here is a quick solution to bypass the browser cache, try append a random number in the query string. Make sure you fix the problems mentioned by Christian.
Random r = new Random();
int RandomNumber = r.Next();
Response.Redirect(Request.RawUrl.ToString()+"?r=" + RandomNumber.ToString();