Without seeing the code, it's hard to say what is really happening.
What are you doing to mitigate against the risk of SQL Injection in the dynamic SQL?
Jack Corbett
Consultant - Straight Path Solutions
Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question