-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy pathProgram.vb
More file actions
38 lines (28 loc) · 1.34 KB
/
Program.vb
File metadata and controls
38 lines (28 loc) · 1.34 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
Imports System.Data.SQLite
Module Program
Private Const DatabaseFileName As String = "mydatabase.db"
Sub Main(args As String())
InsertData("John Doe", "USA")
End Sub
Sub InsertData(userName As String, userCountry As String)
' Set the connection string
Dim connectionString As String = $"Data Source={DatabaseFileName};Version=3;"
' Set up parameterized SQL query
' -----------------------------------------------------------------------------
' Security Note: Never concatenate (or join) a string into a SQL statement.
' Always use parameterized queries to prevent SQL Injection attacks.
' -----------------------------------------------------------------------------
Dim query As String = "INSERT INTO Users (Name, Country) VALUES (@Name, @Country)"
Using conn As New SQLiteConnection(connectionString)
conn.Open()
Using cmd As New SQLiteCommand(query, conn)
' Set parameters
cmd.Parameters.AddWithValue("@Name", userName)
cmd.Parameters.AddWithValue("@Country", userCountry)
' Run the query
cmd.ExecuteNonQuery()
End Using
End Using
Console.WriteLine($"User {userName} from {userCountry} added successfully!")
End Sub
End Module