cn = New System.Data.OleDb.OleDbConnection("
Provider=SQLOLEDB;SERVER=SERVER\SQLEXPRESS;UID=sa;
PASSWORD=kadavan2486;DATABASE=Hard1;Persist Security Info=True;")
cn.Open()
cm.Connection = cn
cm.Parameters.Clear()
cm.Parameters.Add("@Product_ID", OleDbType.BigInt, 4)
cm.Parameters.Add("@Img", OleDbType.VarBinary, img.Length)
cm.Parameters("@Product_ID").Value = 1
cm.Parameters("@Img").Value = img
cm.CommandText = "insert into Product_Small_Image(Product_ID,Img)
values(@Product_ID ,@Img)"
cm.ExecuteNonQuery()
cn.Close()
If I were you, I'd use a Stored Proc instead of dynamic SQL, which
defeats the purpose of using parameters.
> > cn.Close()- Hide quoted text -
>
> - Show quoted text -
hi friend ..
thanks for all your suggestions..
i got the answer
error was in the declaration of oledbcommand pararmeters.
correct declaration is like as follows..
cm.CommandText = "insert into Test(ID,Img) values(?,?)"
cm.Parameters.Add("?P1", OleDbType.BigInt)
cm.Parameters.Add("?p2", OleDbType.VarBinary)
cm.Parameters("?P1").Value =1
cm.Parameters("?P2").Value = img