Login | Register   
RSS Feed
Download our iPhone app
Browse DevX
Sign up for e-mail newsletters from DevX

By submitting your information, you agree that devx.com may send you DevX offers via email, phone and text message, as well as email offers about other products and services that DevX believes may be of interest to you. DevX will process your information in accordance with the Quinstreet Privacy Policy.

Tip of the Day
Language: Informix
Expertise: Beginner
Jul 17, 2000



Application Security Testing: An Integral Part of DevOps

Date Time Values in Parameterized Queries

I have a parameterized SQL statement like the following:
"insert into eSession (ESessionID, eUserName, eLastActivityTime) 
It's parameters are 'bbb','name' and '2000/01/01 22:23:25', using an ODBC connection. I can't make the date work. Even using the ODBC timestamp format of {ts'yyyy-dd-mm hh:nn:ss'} does no good, although it does work when the statement is not parameterized, like so:
"insert into eSession (ESessionID, eUserName, eLastActivityTime) 
VALUES('bbb','name',{ts '2000-01-01 22:23:25'})"
Is there a generic solution that works with SQL Server, Oracle and Access (I know, but I was young and needed the money)?

Is eSession(eLastActivityTime) a time or a datetime format? Try putting double quotes around the date-time and see what that does.

Otherwise, since you can run it in a non-parameterized statement, the problem must lie in the parameterization process.

DevX Pro
Comment and Contribute






(Maximum characters: 1200). You have 1200 characters left.



We have made updates to our Privacy Policy to reflect the implementation of the General Data Protection Regulation.
Thanks for your registration, follow us on our social networks to keep up-to-date