public static string saveDataRequired(List <string> data, string user, string website, string category) { string tag = "", query = "", dataParam = "";; List <string> dataParamList = new List <string>(), dataValue = new List <string>(); SqlCommand command = new SqlCommand(); command.Parameters.Clear(); for (int i = 0; i < data.Count; i++) { //dataParam += "@data" + i + ","; dataParam += data[i] + ","; dataValue.Add(data[i]); dataParamList.Add("@data" + i); } dataParam = dataParam.Remove(dataParam.Length - 1); DataTable dt = cls.GetData("SELECT * FROM tbl_MLS_DataRequired WHERE website_id = '" + website + "' AND category_id = (SELECT category_id FROM tbl_MLS_Category WHERE Category_Name = '" + category + "')"); if (dt.Rows.Count > 0) { query = "UPDATE tbl_MLS_DataRequired SET field_id = '" + dataParam + "', checked_by = '" + user + "', checked_date = GETDATE() WHERE website_id = '" + website + "' AND category_id = (SELECT category_id FROM tbl_MLS_Category WHERE Category_Name = '" + category + "')"; } else { query = "INSERT INTO tbl_MLS_DataRequired (field_id, website_id, checked_by, checked_date, category_id) VALUES ('" + dataParam + "', '" + website + "', '" + user + "', GETDATE(), (SELECT category_id FROM tbl_MLS_Category WHERE Category_Name = '" + category + "'))"; } int exec = cls.ExecuteQuery(query); tag = exec > 0 ? "1" : "0"; return(tag); }