0
 myConnection.Open()
    rtb_Address.Clear()
    txt_Name.Clear()
    Dim str As String
    str = "SELECT * FROM table1 WHERE (cus_ID = '" & txt_ID.Text & "')"
    Dim cmd As OleDbCommand = New OleDbCommand(str, myConnection)

    dr = cmd.ExecuteReader()

    While dr.Read()
        rtb_Address.Text = dr("cus_Addr").ToString
        txt_Name.Text = dr("cus_Name").ToString
    End While
    myConnection.Close()

dr = cmd.ExecuteReader() 中的错误

dr 被声明为 OleDbDataReader

4

2 回答 2

0

cus_ID可能是数字数据类型,但您尝试使用字符串查询它:(cus_ID = 'thevalue')

只需删除封闭的'(cus_ID = thevalue)

或者更好的是,使用参数化查询来防止 sql 注入。

于 2013-10-23T10:03:12.263 回答
-1

我会推荐以下内容:

 Using cmd As New OleDbCommand("SELECT * FROM table1 WHERE cus_ID = @ID", con)
    cmd.Parameters.AddWithValue("@ID", txt_ID.Text)

    dr = cmd.ExecuteReader()

    While dr.Read()
      rtb_Address.Text = dr("cus_Addr").ToString
      txt_Name.Text = dr("cus_Name").ToString
    End While

 End Using
于 2013-10-23T10:29:13.887 回答