ASP过滤特殊字符完整文档格式.docx
- 文档编号:20514924
- 上传时间:2023-01-23
- 格式:DOCX
- 页数:10
- 大小:18.62KB
ASP过滤特殊字符完整文档格式.docx
《ASP过滤特殊字符完整文档格式.docx》由会员分享,可在线阅读,更多相关《ASP过滤特殊字符完整文档格式.docx(10页珍藏版)》请在冰豆网上搜索。
endfunction
'
过滤SQL非法字符并格式化html代码
functionReplace_Text(fString)
ifisnull(fString)then
Replace_Text="
exitfunction
else
fString=trim(fString)
fString=replace(fString,"
;
;
--"
—"
fString=server.htmlencode(fString)
Replace_Text=fString
endif
会员发布的各种信息过滤
FunctionReplace_Text(fString)
IfNotIsNull(fString)Then
fString=trim(fString)
fString=replace(fString,"
"
)
分号过滤
——"
)'
--过滤
%20"
特殊字符过滤
=="
==过滤
fString=Replace(fString,CHR(32),"
fString=Replace(fString,CHR(9),"
fString=Replace(fString,CHR(34),"
quot;
fString=Replace(fString,CHR(39),"
#39;
单引号过滤
fString=Replace(fString,CHR(13),"
fString=Replace(fString,CHR(10)&
CHR(10),"
/P>
P>
fString=Replace(fString,CHR(10),"
BR>
Replace_Text=fString
EndIf
EndFunction
过滤SQL非法字符
FunctioncheckStr(Chkstr)
dimStr:
Str=Chkstr
ifisnull(Str)then
checkStr="
exitFunction
Str=replace(Str,"
checkStr=Str
检测传递的参数是否为数字型
FunctionChkrequest(Para)
Chkrequest=False
IfNot(IsNull(Para)orTrim(Para)="
orNotIsNumeric(Para))Then
Chkrequest=True
检测传递的参数是否为日期型
FunctionChkrequestdate(Para)
Chkrequestdate=False
orNotIsDate(Para))Then
Chkrequestdate=True
得到当前页面的地址
FunctionGetUrl()
OnErrorResumeNext
DimstrTemp
IfLCase(Request.ServerVariables("
HTTPS"
))="
off"
Then
strTemp="
http:
//"
Else
https:
strTemp=strTemp&
CheckStr(Request.ServerVariables("
SERVER_NAME"
))
IfRequest.ServerVariables("
SERVER_PORT"
)<
80ThenstrTemp=strTemp&
:
&
URL"
IfTrim(Request.QueryString)<
ThenstrTemp=strTemp&
?
CheckStr(Trim(Request.QueryString))
GetUrl=strTemp
FunctionCheckReferer()
检查用户是否在浏览器里输入了本页的地址
DimsReferer,Icheck
CheckReferer=True
sReferer=Request.ServerVariables("
HTTP_REFERER"
ServerIP=Request.ServerVariables("
LOCAL_ADDR"
Icheck=InStr(sReferer,"
ServerIP"
IfIcheck=0Then
CheckReferer=False
日期格式化
FunctionFormatDate(DT,tp)
dimY,M,D
Y=Year(DT)
M=month(DT)
D=Day(DT)
ifM<
10thenM="
0"
M
ifD<
10thenD="
D
selectcasetp
case1FormatDate=Y&
年"
M&
月"
D&
日"
case2FormatDate=Y&
-"
endselect
不允许外部提交数据的选择
FunctionChkPost()
dimHTTP_REFERER,SERVER_NAME
dimserver_v1,server_v2
chkpost=false
SERVER_NAME=CheckStr(Request.ServerVariables("
HTTP_REFERER=CheckStr(Request.ServerVariables("
server_v1=Cstr(HTTP_REFERER)
server_v2=Cstr(SERVER_NAME)
ifmid(server_v1,8,len(server_v2))<
server_v2then
chkpost=true
构造上传图片文件名随机数
functionMakedownName()
dimfname
fname=now()
fname=replace(fname,"
PM"
AM"
上午"
下午"
fname=int(fname)+int((10-1+1)*Rnd+1)
MakedownName=fname
Email检测
functionIsValidEmail(email)
dimnames,name,i,c
IsValidEmail=true
names=Split(email,"
@"
ifUBound(names)<
1then
IsValidEmail=false
foreachnameinnames
ifLen(name)<
=0then
fori=1toLen(name)
c=Lcase(Mid(name,i,1))
ifInStr("
abcdefghijklmnopqrstuvwxyz_-."
c)<
=0andnotIsNumeric(c)then
next
ifLeft(name,1)="
."
orRight(name,1)="
then
ifInStr(names
(1),"
i=Len(names
(1))-InStrRev(names
(1),"
ifi<
2andi<
3then
ifInStr(email,"
.."
)>
0then
Jmail邮件发送
FunctionSendJmail(Email,Topic,MailBody)
DimJMail
onerrorresumenext
SetJMail=Server.CreateObject("
JMail.SMTPMail"
JMail.LazySend
=true
JMail.silent
JMail.Charset
="
gb2312"
JMail.ContentType
text/html"
JMail.Sender
wemaster@alibaba.info"
'
我们网站自己的邮箱
JMail.ReplyTo
JMail.SenderName
阿里爸爸邮件发送"
JMail.Subject
=Topic
JMail.SimpleLayout
JMail.Body
=MailBody
JMail.Priority
=3
JMail.AddRecipientEmail
JMail.AddHeader"
Originating-IP"
GBL_IPAddress
IfJMail.Execute()=falseThen
SendJmail=0
SendJmail=1
JMail.Close
SetJMail=Nothing
分页
FunctionlistPages(LinkFile)
ifnot(rs.eofandrs.bof)then
gopage=currentpage
totalpage=n
blockPage=Int((gopage-1)/10)*10+1
ifinstr(linkfile,"
page="
)>
0orinstr(linkfile,"
0then
pos=instr(linkfile,"
)-2
linkfile=left(linkfile,pos)
endif
lenstrTemp=len(strTemp)+1
ifinstr(left(linkfile,lenstrTemp),"
ifblockPage=1Then
Response.Write"
spandisabled>
【←前10页<
/span>
Response.Write("
【<
ahref="
LinkFile&
blockPage-10&
←前10页<
/a>
i=1
DoUntili>
10orblockPage>
n
IfblockPage=int(gopage)Then
fontcolor=#FF0000>
[<
blockPage&
]<
<
["
blockPage=blockPage+1
i=i+1
Loop
ifblockPage>
totalpageThen
后10页→】"
后10页→<
】"
response.write"
直接到第"
selectonchange=if(this.options[this.selectedIndex].value!
='
){location=this.options[this.selectedIndex].value;
}>
fori=1tototalpage
optionvalue='
i&
ifi=gopagethenresponse.write"
selected"
i&
/option>
/select>
页<
Br>
Startinfo=((gopage-1)*msg_per_page)+1
Endinfo=gopage*msg_per_page
ifEndinfo>
totalrecthenEndinfo=totalrec
共"
totalrec&
条信息当前显示第"
Startinfo&
-"
Endinfo&
条每页"
msg_per_page&
条信息共"
n&
页"
分页2
FunctionlistPages2(LinkFile)
前10页<
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- ASP 过滤 特殊 字符 完整
![提示](https://static.bdocx.com/images/bang_tan.gif)