How to display access database on labels

Question

1.00/5 (1 vote)

See more:

i tried this code but it doesn't work the label show as same as his old text name label25 ,what is the problem?

What I have tried:

C#

string connectString = "Provider=Microsoft.Jet.OLEDB.4.0;" + "Data Source=D:/ALL/Database311.mdb";
OleDbConnection cn = new OleDbConnection(connectString);

cn.Open();
string selectString = "SELECT name FROM tabel22 WHERE name='" + label25.Text+ "'";
OleDbCommand cmd = new OleDbCommand(selectString, cn);
OleDbDataReader reader = cmd.ExecuteReader();
if (reader.Read())
{
    label25.Text = reader.GetString(reader.GetOrdinal("name"));
}


cn.Close();

Posted 21-Oct-19 6:11am

Member 14630006

Updated 21-Oct-19 7:13am

Andy Lanng

v3

Add a Solution

Comments

Member 14630006 21-Oct-19 12:33pm

how to show the second name in tabel22

3 solutions

Solution 2

The code is correct, you search for the same name and it will be shown again :)

Posted 21-Oct-19 6:17am

RickZeeland

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Andy Lanng · Accepted Answer · 2019-10-21T06:17:00

Solution 1

Here's what your sql does:

Give me 'Name' where 'Name' is "Doug" and you're surprised that it's Doug?

Take another look at the sql. step through it and check the values.

Posted 21-Oct-19 6:17am

Andy Lanng

Comments

Member 14630006 21-Oct-19 12:24pm

thanks alot i tried this and it worked
string selectString = "SELECT name FROM tabel22";

MadMyche · Accepted Answer · 2019-10-21T07:13:00

Glad you have resolved your logic error...

Now onto more important things- This code has a SQL Injection Vulnerability
string = "SELECT name FROM tabel22 WHERE name='" + label25.Text+ "'"

The proper way to take user input and place within an SQL Command is to utilize parameters; which will properly escape the user entry.

C#

string selectString = "SELECT name FROM tabel22 WHERE name= ?";
OleDbCommand cmd = new OleDbCommand(selectString, cn);
cmd.Parameters.AddWithValue("@name", label25.Text);
OleDbDataReader reader = cmd.ExecuteReader();