Inserting "Double Quotes" ASP?VBScript/SQL Server

craigcsb · June 30th, 2003, 09:29 AM

Hi all,
I have a form which inserts into an SQL Server varchar(1000) field from a textarea using ASP/VBScript.
When i insert text in double quotes from the text area, for example "Hello", it isnt inserted into the database. I'v been trying to solve this for a while with no luck. Can anyone point me in the right direction to solving this. Do you use Replace() to change the double quotes? If so how?
Thanks in advance
Craig

tknguyen · July 4th, 2003, 10:37 PM

Hi Craig,

Here is my code, and I have no problem inserting double quote.
Note: I replace single quote with 2 single quotes to prevent SQL to truncate the statement

//form in page 1
<FORM METHOD="post" ACTION="Test2.asp">
<TEXTAREA NAME="Description">"Hello"</TEXTAREA>
<BR><INPUT TYPE="submit">
</FORM>

//action page
sSQL = "INSERT INTO tblTest (Description) VALUES ('" & Replace(sDesc, "'", "''") & "')"
Call cn.Execute(sSQL)

Is that what you doing?
Khoa Nguyen