<CFQUERY
NAME="NewID"
datasource="VFP"
dbtype="ODBC">
SELECT max(id) as LastID from News
</CFQUERY>
<cfset Image=Trim(#Form.txtImage#)>
<cfset NextID=#NewID.LastID#+1>
<cfset OptionNews=trim(#Form.optNews#)>
<CFQUERY NAME="qry_News" DATASOURCE="VFP">
INSERT INTO News(id,ctopic ,mnews ,ddate ,cphoto ,mphototext ,itype ,lnew ,backgroundimg)
VALUES(#NextID#,
<CFQUERYPARAM VALUE="#Form.txtTopic#">,
<CFQUERYPARAM VALUE="#Form.txtMemo#" MAXLENGTH="9999">,
{04/06/04},
[#Image#],
<CFQUERYPARAM VALUE="#Form.txtText#">,
#OptionNews#,
.f.,
[none]
)
</CFQUERY>
> Are you using cfqueryparam? If not what are you doing to escape
> characters
> like ' ,"; etc?
>
>
> Kore Peterson
>
>
>
>
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
