Member Avatar for jez9

here's my code

Dim sql As String = "INSERT INTO tbldailysales(date, totalprice)VALUES(@date, @totalprice)"
        cmd = New OleDbCommand(sql.ToString, con)
        cmd.Parameters.AddWithValue("@date", lblday.Text)
        cmd.Parameters.AddWithValue("@totalprice", lblstotal.Text)
        cmd.ExecuteNonQuery()
  • 4 Contributors
  • 4 Replies
  • 317 Views
  • 1 Day Discussion Span
  • Latest Post Latest Post by jez9
Member Avatar for hericles

The only thing I can see is that you're missing the final semi-colon (;) on the statement.
If it isn't that, can you provide the actual error message?

Member Avatar for Reverend Jim

Use @name parameters with SQLDB. For OleDB you have to use ? as s placeholder. Plese see Use Parameterized Queries to Avoid SQL Injection Attacks. When using SQLDB, parameters can be added by name. With OleDB you must add them in the order in which they appear in the query.

Edited by Reverend Jim
Member Avatar for Santanu.Das

Agreed with Reverend Jim. Use Question Mark i.e. ? as a placeholder of a Parameter.
Your SQL Statement shoud be

Dim sql As String = "INSERT INTO tbldailysales(date, totalprice) VALUES(?, ?)"

But, what was the error report. Is your connection Object Opened. I did not find it in your code.

Member Avatar for jez9

my connection is open. but i can add now, thanks for helping guys :)

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.