分配錯誤在查詢

我有這樣的查詢拋出....分配錯誤在查詢

selectLeaveDetails = 
    "SELECT UL.[PK_ID],UD.FIRST_NAME + ' ' + UD.LAST_NAME AS REQUESTBY," + 
    "UL.[DATE_FROM] AS FROMDATE,UL.[DATE_TO] AS TODATE," + 
    "UL.LEAVE_REQUEST_ON AS REQUESTON," + 
    "REPLACE(UL.LEAVE_REQUEST_NOTES, '\n', '<br />') AS REQUESTNOTES," + 
    "STATUS=CASE " + 
    " WHEN UL.[LEAVE_STATUS] = '1' THEN 'ACTIVE' " + 
    " WHEN UL.[LEAVE_STATUS] = '-1' THEN 'CANCELLED' " + 
    " WHEN UL.[LEAVE_STATUS] = '2' THEN 'REPLACED' END," + 
    "UL.LEAVE_RESPONSE_ON AS RESPONSEON," + 
    "ULL.FIRST_NAME + ' ' + ULL.LAST_NAME AS RESPONSEBY," + 
    "UL.[LEAVE_RESPONSE_NOTES] AS RESPONSENOTES,UL.FK_LEAVE_REQUESTER " + 
    "FROM (M_USER_LEAVES UL " + 
    "INNER JOIN M_LEADERLED MLL ON MLL.LED_ID = MUD.PK_ID WHERE MLL.LEADER_ID = '" + Session["UserID"].ToString() ****" +**** 
    "LEFT JOIN M_USER_DETAILS UD ON UD.PK_ID = UL.FK_LEAVE_REQUESTER) " + 
    "LEFT JOIN M_USER_DETAILS ULL ON ULL.PK_ID = UL.FK_LEAVE_RESPONSE_BY " + 
    " WHERE UL.DATE_FROM BETWEEN '01/01/" + cmbYearList.SelectedItem.Text + "' AND '12/31/" + cmbYearList.SelectedItem.Text + "'" + 
    " AND UD.ACTIVE=1";

在cmbYearList.SelectedItem.Text + "' AND '12/31/" + cmbYearList.SelectedItem.Text + "'"查詢......只有賦值，遞增，遞減引發錯誤

誰能幫助我？

來源

2010-11-27 Srivastava

幾點要點：既然你把你的查詢連接在一起，你就打開了自己的SQL注入 - 不要這樣做！改用參數化查詢。另外：對於日期格式，使用「01/01/...」和「12/31/...」會使您的代碼依賴於SQL Server上的語言設置 - 使用ISO-8601格式替代「YYYYMMDD」 - 那些**無論您的語言/地區設置如何，**總是** – 2010-11-27 09:57:43

你FROM子句中不知何故相當錯位了：

FROM (M_USER_LEAVES UL 
     INNER JOIN M_LEADERLED MLL ON MLL.LED_ID = MUD.PK_ID 
     WHERE MLL.LEADER_ID = 'XXXX" 
     LEFT JOIN M_USER_DETAILS UD ON UD.PK_ID = UL.FK_LEAVE_REQUESTER)

你有一個INNER JOIN，然後WHERE條款，隨後LEFT JOIN ....這似乎很奇怪.....究竟是什麼你想在這裏做？爲什麼你需要把這個變成一個子查詢 - 你不能只將這些表INNER JOIN和LEFT JOIN合併成一個語句並定義必要的WHERE約束嗎？

此外，在這裏你WHERE條款得到一個開口的單引號和右雙引號 - 這是行不通的......

WHERE MLL.LEADER_ID = 'XXXX" 
        *** ***

你需要讓你的SQL查詢在SQL工作首先將服務器管理工作室 - 然後將其轉移到您的C＃代碼中。

來源

2010-11-27 10:13:06

分配錯誤在查詢

回答

相關問題