<% dim sql_injdata SQL_injdata = "'|exec|insert|select|delete|update|chr|mid|master|truncate|char|declare" SQL_inj = split(SQL_Injdata,"|") If Request.QueryString<>"" Then For Each SQL_Get In Request.QueryString For SQL_Data=0 To Ubound(SQL_inj) if instr(Request.QueryString(SQL_Get),Sql_Inj(Sql_DATA))>0 Then Response.Write "" Response.end end if next Next End If If Request.Form<>"" Then For Each Sql_Post In Request.Form For SQL_Data=0 To Ubound(SQL_inj) if instr(Request.Form(Sql_Post),Sql_Inj(Sql_DATA))>0 Then Response.Write "" Response.end end if next next end if %> <% dim bigname bigname=array("","常用网址","行业信息分类","国内网址分类","便民服务") dim keywordsdescription keywordsdescription=",成都网址大全,成都便民网,成都实用大全,成都旅游大全,成都企业大全,成都大全,成都美食大全,成都吃喝大全,成都腐败大全,成都医院大全,成都小吃大全,成都教育大全,公交线路查询,成都天气预报,车辆违章查询,社保医疗查询,体育彩票查询, 租房买房卖房 ,美容按摩健身,求职招聘中介,成都便民网站,成都网址,成都企业库,成都休闲" dim baseurl baseurl="/" dim Conn,Rs,Sql,ConnStr,DBPat 'On Error Resume Next Sub DBConnBegin() If IsObject(Conn) = True Then Exit Sub ConnStr="Provider=MicroSoft.JET.OLEDB.4.0; Data Source=" 'ConnStr = "driver={Microsoft Access Driver (*.mdb)};dbq=" DBPath = Server.MapPath(baseurl&"inc/gasdasdaads.mdb") Set Conn=Server.CreateObject ("ADODB.Connection") On Error Resume Next Conn.Open ConnStr & DBpath Set rs1 = Server.CreateObject( "ADODB.Recordset" ) rs1.ActiveConnection = Conn rs1.CursorType =1 rs1.LockType =3 Set rs = Server.CreateObject( "ADODB.Recordset" ) rs.ActiveConnection = Conn rs.CursorType =1 rs.LockType =3 End Sub Sub DBConnEnd() Rs.Close Set Rs = Nothing Conn.Close Set Conn = Nothing End Sub Sub Header() Response.Write "" Response.Write "" Response.Write "" Response.Write "" Response.Write ""'oncontextmenu='return false' >" Response.Write "" End Sub Sub Footer() Response.Write "" End Sub Function checktime(str) checktime=replace(str,chr(34),"") checktime=replace(checktime,chr(39),"") checktime=replace(checktime," ","") checktime=replace(checktime,"<","<") checktime=replace(checktime,">",">") checktime=replace(checktime,"","") checktime=replace(checktime,"-","") checktime=replace(checktime,":","") checktime=replace(checktime,"下午","") checktime=replace(checktime,"上午","") checktime=checktime End Function '''''''''''''为空或数字 Function checknum(str) if str="" or not isnumeric(str) then response.Write ("") response.end end if checknum=str End Function Function checkStr(str) checkStr=replace(str,chr(34),"") checkstr=replace(checkstr,chr(39),"") checkstr=replace(checkstr," ","") checkstr=replace(checkstr,"<","<") checkstr=replace(checkstr,">",">") checkstr=replace(checkstr,"","") checkstr=replace(checkstr,"-","") checkstr=replace(checkstr,":","") checkstr=replace(checkstr,"下午","") checkstr=replace(checkstr,"上午","") End Function Function checkcontent(str) str=server.htmlencode(str) errorchar=array("","","#","`","|","alert","script","<",">") for i=0 to ubound(errorchar) if instr(str,errorchar(i))>0 then response.Write ("") response.end 'exit for end if next checkcontent=str End Function '日期处理 Function Qdate(strTemp) yyyy=datepart("yyyy",strTemp) if len(datepart("m",strTemp))<2 then mm="0"&datepart("m",strTemp) else mm=datepart("m",strTemp) end if if len(datepart("d",strTemp))<2 then dd="0"&datepart("d",strTemp) else dd=datepart("d",strTemp) end if Qdate=int(yyyy&mm&dd) End Function dbconnbegin() %> <% h_Href = "http://www.028wz.com" h_Name = "成都网址大全" 'Go.asp 页面 Sub Frame_Go() If Request("Key") = "" Then Response.Redirect "/Index.shtml" End Sub %> 成都网站大全==www.028wz.com最多成都人使用的电脑主页|大家共建,方便你我