Home/ Questions/Q 7429475
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-29T08:58:33+00:00

I am trying to modify a table within a database, as follows: using (SqlCeCommand

  • 0

I am trying to modify a table within a database, as follows:

using (SqlCeCommand com = new SqlCeCommand("INSERT INTO RamResults(Result, Date) VALUES(@num, @date)", con))
{
    com.Parameters.AddWithValue("@num", num);
    com.Parameters.AddWithValue("@hostname2", hostname2);
    com.Parameters.AddWithValue("@date", Form1.date);
    com.ExecuteNonQuery();
}

Although the table name has a variable prefix (hostname2). So I have tried to do the following:

("INSERT INTO @hostname2 + RamResults(Result, Date) VALUES(@num, @date)", con))

But no luck, anyone have any ideas to solve this?

Error Message:

There was an error parsing the query. [ Token line number = 1,Token
line offset = 13,Token in error = @hostname2 ]

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    If you use prepared statements like this, @hostname2 will be replaced to 'value'.
    You should use string.Format() instead:

    string hostprefix = 'host2_'; // example
string sql = string.Format("INSERT INTO {0}RamResults(Result, Date) "+
                            " VALUES(@num, @date)", hostprefix);
using (SqlCeCommand com = new SqlCeCommand(sql, con))
// ....

    BUT only use string.Format for your hostprefix, NOT for user input! This way you can prevent SQL injections.

    • 0