I want to add a simple select statement in my C# code. Sample looks

Question

0

Asked: June 8, 20262026-06-08T02:57:01+00:00 2026-06-08T02:57:01+00:00

I want to add a simple select statement in my C# code. Sample looks

0

I want to add a simple select statement in my C# code. Sample looks like below. The value like y in fname comes from a parameter.
//select lname from myTable where fname = ‘y’

Here’s what I m doing. I m obviously getting Sql Exception. How do I correct it? Thanks.

string strOrdersOrigSQL = "SELECT LastName FROM Employees";
// Concatenate the default SQL statement with the "Where" clause and add an OrderBy clause
       strOrdersSQL = strOrdersOrigSQL + "where FirstName ="+ 'strFname';

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-08T02:57:03+00:00

Editorial Team

2026-06-08T02:57:03+00:00Added an answer on June 8, 2026 at 2:57 am

But it can be done as

string strOrdersOrigSQL = "SELECT LastName FROM Employees";
// Concatenate the default SQL statement with the "Where" clause and add an OrderBy clause
       strOrdersSQL = strOrdersOrigSQL + " where FirstName ='"+ strFname + "'";

This is not proper way of doing it since it can be affected by SQL Injection. Use parameterised queries instead.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I want to add a simple select statement in my C# code. Sample looks

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply