C# SQL insert command
First of all: STOP concatenating together your SQL code!! This is an invitation to hackers everywhere to attack you with SQL injection! Use parametrized queries instead! I would use this solution: create a single SqlCommand with a parametrized query, and execute that: string stmt = “INSERT INTO dbo.Test(id, name) VALUES(@ID, @Name)”; SqlCommand cmd = new … Read more