Home/ Questions/Q 8476509
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-10T18:11:56+00:00

I have the following code: SqlCommand cmd2 = new SqlCommand( SELECT ClaimId FROM tblPayment

  • 0

I have the following code:

SqlCommand cmd2 = new SqlCommand(
  "SELECT ClaimId FROM tblPayment WHERE PaymentId = " + PaymentID.ToString(),
  mvarDBConn);
SqlDataReader reader = cmd2.ExecuteReader();
reader.Read();
Int32 ClaimId = reader.GetInt32(0);
reader.Close();

If I run the SELECT statement in SQL it returns the number fine, but when I use ExecuteReader all it returns is 0. I’ve tried multiple methods including ExecuteScalar, ExecuteNonQuery, reader.GetString then casting that to an int, etc.

What am I missing? Thanks.

EDIT: Here’s what I get in the SQL Server Profile:

Here’s what I get back:

 exec sp_executesql N'SELECT ClaimId FROM tblPayment WHERE PaymentId = @paymentID',N'@paymentID nvarchar(5)',@paymentID=N'8392'

Have no idea why it’s putting it into an SP_ExecuteSQL when the previous SqlCommand I have goes straight to SQL, same with the ‘N’s.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Better to use SqlCommand.ExecuteScalar() for this:

    int ClaimId = Convert.ToInt32(cmd2.ExecuteScalar());

    Also, to avoid a possible SQL Injection attack, use ADO Command Object with Parameters:

    // create command
SqlCommand cmd2 = new SqlCommand(
  "SELECT ClaimId FROM tblPayment WHERE PaymentId = @paymentID",
  mvarDBConn);

// add parameter
cmd2.Parameters.AddWithValue("@paymentID", PaymentID);

// execute command and convert the result
int ClaimId = Convert.ToInt32(cmd2.ExecuteScalar());
    • 0