Recommended: A tip for using for loop in asp This article mainly shares a tip for a for loop in Asp. I really don’t pay attention to it. I hope that friends who understand Asp can refer to it.
<%
'===========================================
'Function list:
'1: Establish a database connection ConnOpen (DataBaseConnectStr, DBType, Conn_object)
'2: Disconnect the database ConnClose(Conn_object)
'3: Prevent SQL injection of SafeRequest(paraName,paraType)
'4: Format date DateFormat(dateStr,dateType)
'5: Show error message ShowErr(errStr)
'6: Search for specific data in the query string SelectStr(contentStr, patternStr, patternNum)
'7: Filter the specified character Leach(contentStr, badWords)
'8: Remote file content crawling Seize(urlStr)
'9: Data flow encoding processing BytesToBstr(body,cset)
'10: Encoding cookies codeCookie(contentStr)
'11: Decode cookies DecodeCookie(contentStr)
'12: Check whether the data submission source is legal ChkPost()
'13: Personalized encryption MyEncrypt(StrPassword)
'14: NoBuffer() is prohibited from cached on this page
'15: Web page format input text HTMLEncode(fString)
'16: Intercept the specified length of the string from the head (by number of characters) GotTopic(Str,StrLen)
'17: Check verification code CheckRadomPass (RadomPass)
'18: Generate verification code GetCode()
'19: Get the client operating system version GetSystem()
'20: Database Transaction ConnManage(Conn_object)
'21: QuickSort (recursive) QuickSort(arr,Low,High)
'22: Connect the elements of the array in a specific string arr_join(arr, character)
'23: Returns the number of strings divided by a certain split character count_character(str,character)
'24: Intercept the specified number of strings in the string containing the splitter inter_str_by_character_num(str,character,start,num)
'25: Use Stream to download the file downloadFile(strFile)
'26: Return message send_back(ResultWords)
'27: Get error message get_err()
'28: Contrary to SafeResponse(content)
'29: Save RemoteFile(LocalFileName,RemoteFileUrl)
'30: ...
dim language_arr(10)
language_arr(0) = The parameter setting of the database connection is incorrect!
language_arr(1) = The type parameter setting of the database connection is incorrect!
language_arr(2) = Database connection failed!
language_arr(3) = Illegal parameter value!
language_arr(4) = The parameter value is not a valid date format!
language_arr(5) = Operation failed!
language_arr(6) = The column has a duplicate name!
language_arr(7) = The column name is empty!
language_arr(8) = Column folder creation failed!
language_arr(9) = You do not have this permission!
'
'Function ID: 1
'Function function: establish a connection to the database
'Modification time:
'Successor parameters:
' connectStr: database connection string
' connectType: Database category-numeric type, 0 is Access, 1 is MS SQL
'Return value:
'
sub ConnOpen(DataBaseConnectStr,DBType,Conn_object)
Set Conn_object = Server.Createobject(adodb.connection)
if DataBaseConnectStr = then call ShowErr(language_arr(0))
if DBType = 0 then
Conn_object.Open driver={Microsoft Access Driver (*.mdb)};dbq= & DataBaseConnectStr
elseif DBType = 1 then
Conn_object.Open Provider=SQLOLEDB.1; & DataBaseConnectStr
else
call ShowErr(language_arr(1))
end if
err.clear
end sub
'
'Function ID: 2
'Function: Disconnect the database
'Modification time:
'Successor parameters:
'Return value:
'
Sub ConnClose(Conn_object)
Conn_object.close
set Conn_object = nothing
End sub
'
'Function ID: 3
'Function function: prevent SQL injection
'Modification time:
'Successor parameters:
' paraName: ParaName-character
' paraType: ParaType: Parameter type-numeric type (1 means that the above parameters are numbers, and 0 means that the above parameters are characters)
'Return value:
' Filtered string
'
Function SafeRequest(paraName,paraType)
dim paraValue
paraValue = Request(paraName)
select case paraType
case 0
paraValue = replace(paraValue,',[system:34])
paraValue = replace(paraValue,=,[system:61])
case 1
if not IsNumeric(paraValue) then call ShowErr(language_arr(3))
case -1
if not IsNumeric(paraValue) then call ShowErr(language_arr(3))
if paraValue = then paraValue = 0
case else
if len(paraValue) > paraType then call ShowErr(language_arr(3))
paraValue = replace(paraValue,',[system:34])
paraValue = replace(paraValue,=,[system:61])
end select
SafeRequest = paraValue
End function
'========================================'Function ID: 4
'Function function: format date
'Modification time:
'Successor parameters:
' dateStr:DateStr:
' paraType: Date type-numeric type
'Return value:
' Formatted Date
Function DateFormat(dateStr,dateType)
Dim dateString
if IsDate(dateStr) = False then
call ShowErr(language_arr(4))
end if
Select Case dateType
Case 1
dateString = Year(dateStr)&-&Month(dateStr)&-&Day(dateStr)
Case 2
dateString = Year(dateStr)&.&Month(dateStr)&.&Day(dateStr)
Case 3
dateString = Year(dateStr)&/&Month(dateStr)&/&Day(dateStr)
Case 4
dateString = Month(dateStr)&/&Day(dateStr)&/&Year(dateStr)
Case 5
dateString = Day(dateStr)&/&Month(dateStr)&/&Year(dateStr)
Case 6
dateString = Month(dateStr)&-&Day(dateStr)&-&Year(dateStr)
Case 7
dateString = Month(dateStr)&.&Day(dateStr)&.&Year(dateStr)
Case 8
dateString = Month(dateStr)&-&Day(dateStr)
Case 9
dateString = Month(dateStr)&/&Day(dateStr)
Case 10
dateString = Month(dateStr)&.&Day(dateStr)
Case 11
dateString = Month(dateStr)&language_arr(6)&Day(dateStr)&language_arr(7)
Case 12
dateString = Day(dateStr)&language_arr(7)&Hour(dateStr)&language_arr(8)
case 13
dateString = Day(dateStr)&language_arr(7)&Hour(dateStr)&language_arr(8)
Case 14
dateString = Hour(dateStr)&language_arr(8)&Minute(dateStr)&language_arr(9)
Case 15
dateString = Hour(dateStr)&:&Minute(dateStr)
Case 16
dateString = Year(dateStr)&language_arr(5)&Month(dateStr)&language_arr(6)&Day(dateStr)&language_arr(7)
Case Else
dateString = dateString
End Select
DateFormat = dateString
End Function
'
'Function ID: 5
'Function function: display error prompt
'Modification time:
'Successor parameters:
' errStr: Error prompt - character type
'Return value: Return to the submission page
'
Share: eWebEditor v3.8 column directory Title: asp eWebEditor v3.8 column directory vulnerability (other versions are tests) Vulnerability file: asp/browse.asp vulnerability occurs: Sub InitParam() sType = UCase(Trim(Request.QueryString(type)))sStyleName = Trim(Request.QueryString(style))sCusDir = Trim(Request.QueryString(cusdir))Dim i, aSt
2 pages in total Previous page 12 Next page