Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SQL Escape in C# 2

Status
Not open for further replies.
kurie

kurie

Programmer
Jun 4, 2008
170
ZA
Can anyone please help with a function that will accept a string as a parameter and will replace all occurrences of the “’” (apostrophe\single quote) character with the valid SQL equivalent i.e. escape the single quote to be used in a SQL statement. And then return the correctly formatted string.

Regards
 
Sort by date Sort by votes
use parameterized queries instead of sql injection.

Jason Meckley
Programmer

faq855-7190
faq732-7259
 
Upvote 0 Downvote
What jmeckley said...

myString = myString.Replace("[!]'[/!]", "[!]''[/!]")

Lodlaiden

You've got questions and source code. We want both!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

WomanPro
  • Locked
  • Question
Where do we put public functions in C# (modules don't exist) ?
Replies
3
Views
648
docotor
docotor
diembi
  • Locked
  • Question
sql server script error
Replies
0
Views
617
diembi
diembi
NoCoolHandle
  • Locked
  • Question
working with SQL "FOR JSON AUTO
Replies
2
Views
454
NoCoolHandle
NoCoolHandle
Crox
  • Locked
  • Question
new to c#
Replies
3
Views
445
Crox
Crox
xarzu
  • Locked
  • Question
What is the proper way to declare a Microsoft class to use in my code. The quick and dirty way I am doing it here, I know, is not correct
Replies
0
Views
550
xarzu
xarzu

Part and Inventory Search

Sponsor

Back
Top