Home/ Questions/Q 8144929
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-06T13:30:26+00:00

This is my code below. The program runs fine. I don’t get any exceptions.

  • 0

This is my code below. The program runs fine. I don’t get any exceptions. But in the end, the table doesn’t contain the newly inserted row. (Note, the connection string is correct).

string Name = "myname";
string Age = "myage";

string sql = "INSERT INTO Student (Name, Age) VALUES ('" + Name + "','" + Age + "')";

SqlConnection conn = new SqlConnection(ConfigHelper.GetConnectionString());
SqlCommand cmd = new SqlCommand(sql, conn);
cmd.ExecuteNonQuery();
conn.Close();
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    First of all: start using parametrized queries! Otherwise your code is always open to SQL injection attacks – not something you want to have to deal with.

    Assuming you are using this feature (depends on the connection string, which you haven’t shown us in the original question): the whole User Instance and AttachDbFileName= approach is flawed – at best! Visual Studio will be copying around the .mdf file and most likely, your INSERT works just fine – but you’re just looking at the wrong .mdf file in the end!

    If you want to stick with this approach, then try putting a breakpoint on the myConnection.Close() call – and then inspect the .mdf file with SQL Server Mgmt Studio Express – I’m almost certain your data is there.

    The real solution in my opinion would be to

    1. install SQL Server Express (and you’ve already done that anyway)

    2. install SQL Server Management Studio Express

    3. create your database in SSMS Express, give it a logical name (e.g. VictoryDatabase)

    4. connect to it using its logical database name (given when you create it on the server) – and don’t mess around with physical database files and user instances. In that case, your connection string would be something like:

      Data Source=.\\SQLEXPRESS;Database=VictoryDatabase;Integrated Security=True

      and everything else is exactly the same as before…

    • 0