ASP.NET(c#) 2005 的登录问题,有人能帮我看下是什么问题吗?运行没问题,但是输入账号密码的时候会出错

 错误信息:红字部分提示说'c5011'附近的语法不正确,其中‘’c5011是txtlogin.text的值protected void btnlogin_Click(object sender, EventArgs e)
    {
        if (txtlogin.Text == string.Empty || txtpwd.Text == string.Empty)
        {
            Response.Write("<script>alert('員工編號和卡號不能為空!')</script>");
        }
        else
        {
            SqlConnection con = new SqlConnection(ConfigurationManager.ConnectionStrings["LCPCConnectionString"].ConnectionString);
            con.Open();
            string cmdtext = "select UserNo,CardNo from V_Users where UserNo=@login and CardNo=@pass ";
            SqlCommand cmd = new SqlCommand(cmdtext, con);
            cmd.Parameters.Add("@login", SqlDbType.VarChar, 50);
            cmd.Parameters["@login"].Value = this.txtlogin.Text.ToString();
            cmd.Parameters.Add("@pass", SqlDbType.VarChar, 15);
            cmd.Parameters["@pass"].Value = this.txtpwd.Text.ToString();
            SqlDataReader dr = cmd.ExecuteReader();
           
            if (!dr.Read())
            {
                Response.Write("<script>alert('用户或密码错误!')</script>");
                
            }
            else
            {
                dr.Close();
               SqlDataAdapter sda = new SqlDataAdapter("select * from V_Users Left Join BookDinner On V_User.CardNo=BookDinner.IDCardNo where DepartmentNo in(select DepartmentNo from V_Users where UserNo='"+txtlogin.Text+"'",con);
                DataSet ds = new DataSet();
                sda.Fill(ds);
                GridView1.DataSource = ds;
                GridView1.DataBind();
                //填充数据集合
                sda.Fill(ds);
                //设定数据源
                GridView1.DataSource = ds;
                GridView1.DataBind();
                con.Close();            }
            con.Close();
        }
    }