ansaurus

Question

ASP.NET-Saving Special Characters to Database

Answer 1

+1 A:

Use parameterized queries.

http://aspnet101.com/aspnet101/tutorials.aspx?id=1

When rendering to the client, you should also use Server.HtmlEncode() to convert characters which have special meaning in HTML to numeric character references.

JasonTrue 2008-11-11 04:28:14

Answer 2

A:

Hard to answer without much details. But usually the best bet is parametrized queries.

Keltex 2008-11-11 04:28:41

Answer 3

A:

Ok.Eventhough i saved in the DB.I need to display this back to a text box.Then the page is breaking. Ex: I have saved Student name as Ani"s and when i am displayin gthis

How to get rid of this problem ?

2008-11-11 04:33:19

Answer 4

A:

Are you encoding the value when you write it out? (Server.HtmlEncode(value))

Matthew Cole 2008-11-11 04:38:23

Not Yet,If i am using Server.HtmlEncode, Can i escape?

2008-11-11 04:40:26

Answer 5

A:

Using (SqlConnection conn = new SqlConnection(connstr))
{
    Using (SqlCommand command = new SqlCommand("INSERT INTO FOO (col) VALUES (@arg)"))
    {
        command.Connection = conn;
        command.Parameters.AddWithValue("@arg",SpecialCharsString);
        command.ExecuteNonQuery();
    }
}

Reading it out should not be breaking your output at all, if it is, its not the database code doing it.

FlySwat 2008-11-11 04:42:08

Answer 6

A:

(Server.HtmlEncode(value)) worked !

Thank you aLL

2008-11-11 05:03:26

Answer 7

A:

(Server.HtmlEncode(value)) worked !

2008-12-19 10:03:45

ansaurus

tags:

views:

answers:

ASP.NET-Saving Special Characters to Database

related questions