请看如下代码片段:
string sqlStr;
string sqlStr1="insert into stocket values('"+this.txtStockCode.Text.Trim()+"','"+
this.txtStockName.Text.Trim()+"','"+this.txtNameForShort.Text.Trim()+"')";
sqlStr="insert into stocket values(@stockCode,@stockname,@stockshortname)";
sqlCommand1=new SqlCommand();
sqlCommand1.Connection=sqlConnection1;
sqlCommand1.CommandText=sqlStr;
sqlCommand1.CommandType=CommandType.Text;
sqlCommand1.Parameters.Add("@stockCode",SqlDbType.Char,6,"StockCode");
sqlCommand1.Parameters.Add("@stockname",SqlDbType.VarChar,20,"StockName");
sqlCommand1.Parameters.Add("@stockshortname",SqlDbType.VarChar,10,"StockShortName");
这时如何将值赋给@stockCode,@stockname,@stockshortname 三个参数呢?
赋值以后,是不是直接用sqlCommand1.ExecuteNonQuery();执行就可以了?
string sqlStr;
string sqlStr1="insert into stocket values('"+this.txtStockCode.Text.Trim()+"','"+
this.txtStockName.Text.Trim()+"','"+this.txtNameForShort.Text.Trim()+"')";
sqlStr="insert into stocket values(@stockCode,@stockname,@stockshortname)";
sqlCommand1=new SqlCommand();
sqlCommand1.Connection=sqlConnection1;
sqlCommand1.CommandText=sqlStr;
sqlCommand1.CommandType=CommandType.Text;
sqlCommand1.Parameters.Add("@stockCode",SqlDbType.Char,6,"StockCode");
sqlCommand1.Parameters.Add("@stockname",SqlDbType.VarChar,20,"StockName");
sqlCommand1.Parameters.Add("@stockshortname",SqlDbType.VarChar,10,"StockShortName");
这时如何将值赋给@stockCode,@stockname,@stockshortname 三个参数呢?
赋值以后,是不是直接用sqlCommand1.ExecuteNonQuery();执行就可以了?
解决方案 »
免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货