riskyricky1972
asked on
sql asp 500pts
WhereString = "SubString(Stock_Master.Bo nd_No,6,le n(Stock_Ma ster.Bond_ No)) ='" & bondno & "' ORDER BY Stock_Master.Bond_No asc"
I have partial of sql statement, and above sql code makes my query really slow. Is anyway I can use some other codes to make it faster?
500pts
I have partial of sql statement, and above sql code makes my query really slow. Is anyway I can use some other codes to make it faster?
500pts
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Try using a LIKE expression in place of = and SUBSTRING.
Your code looks dangerously vulnerable to SQL injection. There will be a proper way to do parameterisation in your host language of choice and you really ought to be using it.