Home/ Questions/Q 8192793
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-07T04:15:22+00:00

I am inserting values in a Mysql database from java file using – String

  • 0

I am inserting values in a Mysql database from java file using –

String query = "INSERT INTO genes (sent, title) VALUES ('"+sent+"','"+title+"')";
Statement stmt = con.createStatement();
int rs = stmt.executeUpdate(query);

where sent and title are variable strings extracted after applying some algorithm. But this gives sql error when sent or title contains single qoutes.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Consider using a prepared statement with parameters:

    PreparedStatement pstmt = con.prepareStatement(
    "INSERT INTO genes (sent, title) VALUES (?, ?)");
pstmt.setString(1, sent);
pstmt.setString(2, title);
pstmt.executeUpdate();
    • 0