insert into mdf database

Question

5.00/5 (1 vote)

See more:

i want to insert data into .mdf database
this my connection

C#

SqlConnection con = new SqlConnection("Data Source=.\\SQLEXPRESS;AttachDbFilename=|DataDirectory|\\Database1.mdf;Integrated Security=True;User Instance=True");

and this is add code

C#

cmd.CommandText = "insert into deviceProblem(id,clientName,receiptDate,deliveryDate"+
                    ",deviceNumber,deviceType,deviceProb,price) " + 
                    "values(" + Convert.ToInt64(id.Text) + ",'" + clientName.Text + "','" 
                    + maskedTextBox1.Text + "','" + maskedTextBox2.Text + "'," 
                    + Convert.ToInt64(deviceId.Text) + ",'" + deviceType.Text + "','" + problem.Text + "'," + price.Text + ")";
                    cmd.ExecuteNonQuery();
if (cmd.ExecuteNonQuery() == 1)
                    {
                        MessageBox.Show("success" + id.Text);
                    }

success appears but when close program nothing in mdf database
??

Posted 5-Nov-14 5:18am

Heba Kamel

Add a Solution

Comments

Richard Deeming 5-Nov-14 11:22am

Your code is vulnerable to SQL Injection[^].

NEVER use string concatenation to build a SQL query. ALWAYS use a parameterized query.

PIEBALDconsult 5-Nov-14 11:31am

Other than the SQL injection vulnerablity and calling cmd.ExecuteNonQuery() twice, nothing seems obviously wrong there.
The most likely thing is you may be inserting to one copy of the file and checking another.

2 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

DamithSL · Answer 1 · 2014-11-05T05:38:00

right click on your mdf file in solution explorer and go to properties > build options => select copy if newer option and also make sure that you are checking correct database file. if you run on debug mode, go to Bin\Debug folder and check the mdf file in there, if you run on release mode you need to check on Bin\Release folder

OriginalGriff · Answer 2 · 2014-11-05T05:44:00

We can't say - there are just too many variables here. So the first thing you need to do is gather information.

Start by checking what it going on: do you get your MessageBox? if not, then you have a exception happening somewhere that you are swallowing.

Check your database carefully: make sure that it is in a folder that has access permissions for read and write to all users. SQL does not use your user id to access files, even if you start your application under your login!

Then check how you are confirming any data. Make absolutely sure that the file is the same one: replace the path with an absolute path of the form C:\folder\file.mdf instead of working with |DataDirectory| and confirm that the updates have been done before you exit your application. Then check the data again to make sure it is still in there.

Then run your app again, and check that the data is still in the DB before you make any changes.

At what point do things go wrong? That should give you at least a clue as to what is happening.

insert into mdf database

2 solutions

Solution 1

Solution 2

Add your solution here

Preview 0