Help with single quote please!

Forum|Forum|16 years ago
January 22, 2010
3 replies
1663 views

I'm doing a simple varchar insert :

Insert into tablename (column1, column2, etc) Values (' #value1# ', ' #value2# ', etc)

How to avoid value with single quote such as: ' L'Enfant Plaza '

Getting started

This topic has been closed for replies.

T

TLC-IT

Inspiring

The dual advantage of <cfqueryparam> is that: (1) any text can be inserted, and (2) the text will never be misunderstood as "part of the SQL" no matter what it contains.

The database engine will receive an SQL string with parameter-placeholders in it, which it will parse. Then, separately, it is given a list of the values to be substituted for each of those parameters, which it will do.

BKBK

Community Expert

Cfqueryparam is preferable. However, an alternative way to preserve single quiotes is:

Insert into tablename (column1, column2, etc) Values (' #preserveSingleQuotes(value1)# ', ' #preserveSingleQuotes(value2)# ', etc)

D

Dan_Bracuk

Inspiring

PreserveSingleQuotes didn't work when I tried it.

BKBK

Community Expert

Sorry about that, Dan. I overlooked a step, the escaping.

Insert into tablename (column1, column2, etc) Values (' #preserveSingleQuotes(value1)# ', ' #preserveSingleQuotes(value2)# ', etc)

In any case, I am surprised Mega L. got that problem. I expected Coldfusion to automatically escape the single quotes within cfquery.

J

Joshua_Cyr

Participating Frequently

Use CFQueryparam. Always use cfquerypram in your queries.

<cfqueryparam value="#value1#" cfsqltype="CF_SQL_VARCHAR" />

http://livedocs.adobe.com/coldfusion/8/htmldocs/help.html?content=Tags_p-q_18.html

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded