Couple of things!
1. Look at parameterised Queries it will protect you against SQL Injection
Read / Example :
SQL Parameterised query example[
^]
2. you have a Try Catch block, but you just exit the sub! as others have stated you need to, if any errors are trapped do something with the error.
3. Have a try of this
dim dt as Datatable = ds.table(0)
dim dr as Datarow = dt.rows(0)
Label1.text = dr(0).toString()