public Function RSQL(strChar); e/ ?. m* y9 u8 Z. p2 E
If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function
: R$ _) ^' G8 C7 w% e Dim strBadChar, arrBadChar, tempChar, I
2 u5 X8 ]' ?: ^: Y5 \ strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00
9 F1 T% \+ b, q4 j! s9 o arrBadChar = Split(strBadChar, ",")/ S' ?2 p: A) p: a1 `. T& k' i
tempChar = strChar+ @7 K5 j, F5 O* w$ M5 A7 t
For I = 0 To UBound(arrBadChar)- b% F) G+ ^' s b7 ^# N
tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
, p. `& y2 E2 `" e9 W: m* u6 d Next
, s; j5 G+ w3 y0 ^( F% ? RSQL = tempChar9 W# [4 P3 R6 ~7 G6 i$ c" e2 ]
End Function8 Z! v. T1 E/ Y8 |$ x- }
|