2 WHERE clauses in sql query

Question

1.00/5 (1 vote)

See more:

I am having trouble writing an sql query with 2 WHERE clauses. This is my current query,

("SELECT * FROM Sales WHERE CD/DVD = '" + typeDisc + "' and SaleDate LIKE '" + Date + "'%");

After a few google searches, I found that after inserting 'and' between the two 'WHERE' clauses, it should return my result.

Any help/examples would be appreciated.

Posted 6-Oct-11 12:04pm

Andrew797

Updated 6-Oct-11 20:47pm

sravani.v

v2

Add a Solution

Comments

Simon Bang Terkildsen 6-Oct-11 18:27pm

You do not state any problem or question.

Andrew797 6-Oct-11 18:40pm

sorry, figured it out, missed place single qoute. now when i run this query, i get the following message: "No value given for one or more required parameters." Both the fields in my query exists in the database, and when debugging, both variables have data. Any Idea?

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

JOAT-MON · Answer 1 · 2011-10-06T14:33:00

I would take a look at the value of the typeDisc (assuming it is a string) and see if there has a single quote in it. If so, you need to escape it by replacing it with two single quotes. On the other hand, if it is an enum variable, then you should use the ToString() function to get its value. Next, look at the Date. If this is a DateTime object, then you will need to use one of the ToString() functions (possibly with the necessary format string) to get the value.

If SalesDate is a datetime datatype, then you may need to do your comparison filter by converting it to a date datatype to ignore the time element:

SQL

"...AND CONVERT([date], SalesDate) = CONVERT([date], '" + Date + "')"

Having said this, it is worth noting that sql queries like this are subject to sql injection attacks. Using parameters is a better method.