public Function RSQL(strChar)' \- R$ n' N% [3 F( x1 H s
If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function
8 k- y$ n) P- C Dim strBadChar, arrBadChar, tempChar, I$ C1 q8 J0 k4 M
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00
* S& t/ e, K* X! M arrBadChar = Split(strBadChar, ",")/ N( ~2 G+ ]! \0 l) J, A9 F* W" {
tempChar = strChar
3 K6 Z* N% q, h8 ^" O9 i K For I = 0 To UBound(arrBadChar), Y. E# g" O, B
tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
7 W: R" V L$ d! S- ^% |0 A3 r) O Next
0 U& n) O {; B0 E c% Y$ u RSQL = tempChar
* Q8 |' Z: a2 _End Function
/ b4 W w: e% g! R |
发表于 2012-9-15 14:40:40
收藏
支持
反对