public Function RSQL(strChar)! U* ]3 p5 W1 T# x0 V
If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function* X+ Z, k( Q. {
Dim strBadChar, arrBadChar, tempChar, I
2 q: G% K; @; U, P strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的005 q1 T3 I0 ^/ W: z; F. V) r0 M
arrBadChar = Split(strBadChar, ",")9 L% ~6 E/ F4 t" N" @/ k
tempChar = strChar# c+ S& I! s, R0 \, I
For I = 0 To UBound(arrBadChar)
& Q/ h. a# `8 ^7 ?9 C0 a tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空( n" a1 Y8 q& x- v3 R0 Q2 N
Next2 Y- ^1 `% |8 [# n7 l
RSQL = tempChar' l- Q5 M4 W1 e4 k# C
End Function) b4 V0 h P) K8 u8 ~( m; f8 `# n
|
发表于 2012-9-15 14:40:40
收藏
支持
反对