These query samples are very much vulnerable to SQL Injection attacks. The recommended option would be Stored Procedures in any case. Vasudevan Deepak Kumar Personal Homepage namespace LavanyaDeepak Personal Weblog The World of Deepak and Lavanya ViewPoint 24x7