Forums

ASP

This topic is locked

Desperately in need of help.....!?!?!?!?!?

Posted 25 Apr 2002 11:24:50
1
has voted
25 Apr 2002 11:24:50 Dan Slade posted:
Hi,

I have a text box on a form that inserts text into a table. When the user
puts double quotes (" in the text field it throws up the following error:

ADODB.Connection.1 error '80004005'

SQLState: S1090
Native Error Code: 0
[TCX][MyODBC]SQLBindParameter not used for all parameters


I replaced all the " in the text with ' and it submits fine.

I am using asp with a MySQL database

I have two questions.

1, does anyone know why it is doing this, and how I could get round it?

If not,

2, Is there a way of replacing certain characters before it throws up the
error?

Please can someone help me out on this, it's driving me mad...

Cheers.



Replies

Replied 25 Apr 2002 12:42:41
25 Apr 2002 12:42:41 Hank Tan-Tenn replied:
I'm not familiar with MySQL, but I imagine you'd want to validate the form input first by making sure special characters conform to MySQL's syntax.

See: www.mysql.com/doc/S/t/String_syntax.html

If you use VBScript, just use the

Replace() function to unescape or otherwise substitute the inputted characters with MySQL-appropriate ones.
Replied 25 Apr 2002 12:58:51
25 Apr 2002 12:58:51 Dan Slade replied:
Thanks, I will try it.

Reply to this topic