Comments on: SQL SERVER – How to Escape Single Quotes – Fix: Error: 105 Unclosed quotation mark after the character string ‘

By: Siridion M. Cabudlan

Siridion M. Cabudlan — Tue, 24 Jan 2012 08:01:07 +0000

Thanks.

By: Tanveer

Tanveer — Fri, 06 Jan 2012 14:18:50 +0000

I have getting same problem in SQL string kindly help me out about this error my sring is
“INSERT INTO LoginMaster(UserName, Password, DistrictID, AgencyID, Address, BlockID, PanchayatID, UserType, ContactNo, EmailAddress, SQuestion, SAnswer, Status) VALUES (‘” + UserName.Text + “‘, ‘” & Password.Text & “‘,’” & district.SelectedValue & “‘,’” & agency.SelectedValue & “‘,’” & AgencyAddress.Text & “‘,’0′,’0′,’” & UserType.SelectedValue & “‘,’” & contactno.Text & “‘,’” & emailaddress.Text & “‘ ,’” & SQuestion.Text & “‘,’” & SAnswer.Text & “‘,’1′)”

plz help me

By: kumbair

kumbair — Sun, 11 Dec 2011 18:21:30 +0000

Hi Pinal,

I am developing a .net application and as part of this, i have a stored procedure that gets me the data with required format. This stored procedure has dynamic sql in it where the formatting of the data takes place.

Below is the query that i am using to format any data based on its column datatype. This query just does the following, I have used master DB for this example,

1. @query variable is formed with a sql query where this query has a case statement in which column name is passed to scalar function(udfSelDataTypeOfColumn) and datatype is got from it.
2. If this datatype is of CHAR or NCHAR or NVARCHAR or VARCHAR then i want the output of the column value enclosed in a single quote.
Suppose, the output value is a varchar with value as Pinal then this query has to return ‘Pinal’ else for other datatypes same value can be returned like (int)1234, (bit)1
I tried formatting with single quotes and concatinating but no luck.

Please let me know a solution to this problem and explain me how single quotes intepretation is done by sql runtime.

USE master

DECLARE @query NVARCHAR(MAX),
@charDataType NVARCHAR(20)

SELECT @charDataType=”’%char%”’
select @query=’SELECT TOP 10
CASE WHEN dbo.udfSelDataTypeOfColumn(”name”) like ‘+@charDataType+ ‘then ”” +name+ ”” else ”name” end
FROM spt_values WITH(NOLOCK)’
EXEC sp_executesql @query

By: ABAnth

ABAnth — Tue, 06 Dec 2011 23:00:37 +0000

thanks! Big fan of your posts

By: Ola

Ola — Wed, 30 Nov 2011 17:59:44 +0000

Thank you so much Nikhil Bhatt

By: karthik

karthik — Mon, 12 Sep 2011 11:22:27 +0000

ALTER PROCEDURE [dbo].[DBSP_SF_GetAccountsLikeAccNo]
@AccountNo VARCHAR(20),
@BusinessName VARCHAR(40),
@Type VARCHAR(2)
AS
BEGIN
DECLARE @str VARCHAR(100)
SELECT @str=REPLACE(@BusinessName,””,”)

IF @Type = ‘AN’
BEGIN
SELECT AccountNo, BusinessName FROM CustomerDetails WITH (NOLOCK) WHERE AccountNo like @AccountNo + ‘%’
END
ELSE IF @Type = ‘BN’
BEGIN
SELECT AccountNo, BusinessName FROM CustomerDetails WITH (NOLOCK) WHERE BusinessName like @str + ‘%’

END
END
if the value is Andersons The Grocery Store .in this I did not get any problem. But, ‘Anderson’s “The Grocery Store”‘ I am getting error like Unclosed quotation mark after the character string ‘). Can you please help out me by giving proper code (how to replace two single quotes in place of one single quote).
plz helpme any modify my SP

By: Joseph Antonaccio

Joseph Antonaccio — Fri, 26 Aug 2011 17:02:12 +0000

I am using a fully loaded sqlite3 database where embedded single and double quotes are included in many of the varchar fields. What select query could i write to simply query the database without things breaking?

for example
where col2 is know to contain embedded single and double quotes
Select col1, col2 from table_Name;

By: Thomas Smith

Thomas Smith — Sat, 20 Aug 2011 20:03:41 +0000

Thanks for really good post.Best regards.

By: Kamran

Kamran — Thu, 18 Aug 2011 21:43:19 +0000

Hi Gurus,

I hope here I am going to get my answer.

The code is working from SQL Server 2000 to 2008.
However the application is crash in 2008R2.

Here is the code:

CREATE TABLE abc (
col1 varchar (7000) NOT NULL,
PRIMARY KEY (col1))

INSERT INTO abc ( col1 )
VALUES( ‘a’ ) // Different Values in a loop

Check the SQLDB CODE If It is Duplicate Then
Do Some Calculation
ELSE
Loop

In 2008R2 as soon as it finds a duplicate it crashed.

By: petcomp

petcomp — Tue, 16 Aug 2011 09:11:47 +0000

This does not always work…Here is an example:

drop table dirresults
CREATE TABLE DirResults (Diroutput VARCHAR(500))
INSERT DirResults
exec master..xp_cmdshell ‘osql -S127.0.0.1,1450 -T -Q “exec sp_executesql N”select * from pubs..authors where state = ”a”””‘

By: Newcomer

Newcomer — Sun, 14 Aug 2011 15:35:19 +0000

Hi Pinal,
My question is whether sql server 2008 has taken care of apostrophe problem. I am not facing any problem of apostrophe in my code when i insert data in table from UI. I am using SQL server 2008 and stored procedure to insert data from UI to database. I tried to find but not able to find any blog where it is mentioned so still in doubt how SP is adding data with apostrophe in table. I want to make myself double sure.

By: eldarion

eldarion — Thu, 07 Jul 2011 13:18:58 +0000

Thank you for this solution!

By: madhivanan

madhivanan — Tue, 15 Mar 2011 08:35:05 +0000

Also refer
http://beyondrelational.com/blogs/madhivanan/archive/2008/02/19/understanding-single-quotes.aspx

By: Nikhil Bhatt

Nikhil Bhatt — Sun, 13 Mar 2011 04:08:29 +0000

Hi Bill,

I had similar problem like yours. Just repeating code from above
Just add the following to your T-SQL

Declare @find nvarchar(5)
Declare @replace nvarchar(5)
Declare @notes –this is the variable used in your update statement

Set @find = ”+ char(39) +” — these are two single quotes
Set @replace = ”+char(39)+char(39)+”
Set @notes = replace(@notes,@find,@replace) –this will replace one single quote with two double quote.

This will be helpful in statement such as Update tbl_name set = ‘%+@notes+%’
where

I hope this helps.
Cheers, bhattji

By: madhivanan

madhivanan — Fri, 11 Mar 2011 11:01:24 +0000

You need to double the single quotes
http://beyondrelational.com/blogs/madhivanan/archive/2008/02/19/understanding-single-quotes.aspx

By: Bill Jones

Bill Jones — Thu, 10 Mar 2011 13:45:08 +0000

Hi,

I have a new variation on this problem. I have a varchar() field called Notes where users can enter anything they want. If they use a single quote for a grammatical contraction, then it causes an error when I try to pass the string in an UPDATE statement. So, for intance:

New account, didn’t ask for conversion.

causes an “Unclosed quotation mark after the character string” error.

I noticed that when I BULK imported the table into SQLServer, it wrapped all these text strings in double quotes:

“New account, didn’t ask for conversion.”

but that doesn’t seem to fix the problem. When I try to pass that text string in an UPDATE statement I still get the error.

Is there a way to wrap up these text strings so they automatically get escaped by SQLServer? I understand the syntax for escaping them when I’m writing the whole SQL statement, but I can’t ask my users to avoid single quotes in their comments.

Thanks,
Bill J.

By: naveen7

naveen7 — Mon, 21 Feb 2011 07:42:05 +0000

Thank you Nikhil

By: madhivanan

madhivanan — Fri, 14 Jan 2011 14:45:42 +0000

Dont use single quote around file name

By: shoeb

shoeb — Fri, 14 Jan 2011 12:06:28 +0000

I need to get the error resolved for the code below

————–error————————–

USE AVME
Declare @SQL nvarchar(MAX)
Declare @docpath nvarchar(MAX)
Set @docpath = N’E:\Workflow\SPP\Attachments\ModelCodes\claim.xls’
Set @SQL = ‘INSERT INTO [Tactical.Claim_LineItems_BULK_Audi] ([JObCreator], [ModelCode],
[ChassisNo], [CommissionNo], [AGSupport],[AVMESupport], [Brand], [Remark])
SELECT *
FROM OPENROWSET (”Microsoft.ACE.OLEDB.12.0”, ”Excel 12.0;;Database=”’+@docpath+”’,
”select * from [Sheet1$]”)’
PRINT @SQL
EXEC(@SQL)

————error———————————————-

INSERT INTO [Tactical.Claim_LineItems_BULK_Audi] ([JObCreator], [ModelCode],
[ChassisNo], [CommissionNo], [AGSupport],[AVMESupport], [Brand], [Remark])
SELECT *
FROM OPENROWSET (‘Microsoft.ACE.OLEDB.12.0′, ‘Excel 12.0;;Database=’E:\Workflow\SPP\Attachments\ModelCodes\claim.xls’,
‘select * from [Sheet1$]‘)
Msg 102, Level 15, State 1, Line 4
Incorrect syntax near ‘E’.
Msg 105, Level 15, State 1, Line 5
Unclosed quotation mark after the character string ‘)’.

By: Nikhil D Bhatt

Nikhil D Bhatt — Sun, 28 Nov 2010 01:38:05 +0000

Problem is mother of solution…
Here’s one of the solution to pass single quote (‘) a.k.a. Apostrophe in searches as variables.
Just add the following to your T-SQL

Declare @find nvarchar(5)
Declare @replace nvarchar(5)
Declare @yourvariable –this is the variable used in search

Set @find = ”+ char(39) +” — these are two single quotes
Set @replace = ”+char(39)+char(39)+”
Set @yourvariable = replace(@yourvariable,@find,@replace) –this will replace one single quote with two double quote

This will be helpful in statement such as select * from tbl_name where column_name like ‘%+@yourvariable+%’

Hope this helps and saves some development time.
bhattji

By: Faisal

Faisal — Mon, 08 Nov 2010 03:29:54 +0000

Thanks to God, the one and only, that I found this post. Thank you very much for this post.

By: sqlquestions

sqlquestions — Mon, 30 Nov 2009 21:38:43 +0000

Just go with brian advice, you can either replace or remove quotes and it will work. If any one have any thing better please put comment.

–remove single quote
set @label = REPLACE(@label ,””,”)

–replace single quote with doule quote
set @label = REPLACE(@label, ””, ‘”‘);

Thanks

By: Brian Tkatch

Brian Tkatch — Mon, 30 Nov 2009 15:24:48 +0000

@sqlquestions

Did you try escaping all those quotes?

By: sqlquestions

sqlquestions — Mon, 30 Nov 2009 05:31:49 +0000

Edited for some typo

@tableName varchar(100),
@Code nvarchar(10),
@label nvarchar(max),
@Lang nchar(2),
@Reg nchar(2),
@Fran nchar(3)

SET @query = ‘INSERT INTO ‘ + @tableName
+ ‘ (Code,label,Lang,Reg,Fran) VALUES’
+’ (”’+ @Code +”’,”’ @label +”’,”’+@Lang+”’,”’+@Reg+”’,”’+@Fran+”’)’

execute(@query)

this query will not work when i have label like this
A00 ”B & Y – “NIPO””

how to fix this

By: pinaldave

pinaldave — Thu, 15 Oct 2009 02:08:08 +0000

Very good advise Imran.