using System; using System.Collections; using System.Configuration; using System.Data; using System.Linq; using System.Web; using System.Web.Security; using System.Web.UI; using System.Web.UI.HtmlControls; using System.Web.UI.WebControls; using System.Web.UI.WebControls.WebParts; using System.Xml.Linq; using System.Data.SqlClient; namespace WebApplication1 { public partial class _Default : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { string name = ""; SqlCommand cmd = new SqlCommand(); cmd.CommandText = "SELECT * FROM test WHERE (name = @name)"; cmd.Parameters.AddWithValue("@name", name); //直接给参数赋值 } } }