public Function RSQL(strChar)
: {9 ]( B% u# Q$ w2 o If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function3 V* }4 i$ _ T! A$ \! l* H. |
Dim strBadChar, arrBadChar, tempChar, I! O1 S6 N1 H3 f2 S+ H* \: B1 a9 k
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的001 U) ]6 Z; |. C0 Z
arrBadChar = Split(strBadChar, ",")
( M8 d2 H/ z' d* T tempChar = strChar" Q* M; ]& U8 C6 `
For I = 0 To UBound(arrBadChar)2 x) u' F1 h, `! }
tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
+ G B6 y0 h, {& e7 k) @ Next
# J m# G$ L2 J, Y RSQL = tempChar+ V3 \2 S% y5 U, _9 `' J, k& U
End Function8 t j5 [1 d7 d$ d. K6 Z" E, X3 D% a
|
发表于 2012-9-15 14:40:40
收藏
支持
反对