public Function RSQL(strChar)
& L/ d" r9 E/ _' l" R If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function- g9 ]2 \, o* z* q4 f9 Y
Dim strBadChar, arrBadChar, tempChar, I9 S% w# m6 R7 }$ m
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的009 t3 D7 ^) R9 X1 n7 c. A, J% I# {, _, ?
arrBadChar = Split(strBadChar, ",")7 T) m0 l5 ?$ e% m% ]
tempChar = strChar
( S# A0 S6 m G) e& A For I = 0 To UBound(arrBadChar)
5 d+ T; f8 z& f tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
' R% X4 z4 {, G' F Next4 S# _7 Q/ H S d, S% o! I
RSQL = tempChar8 t+ j1 c0 }. L$ t0 b b5 j
End Function
6 P0 u3 [- ?/ C |
发表于 2012-9-15 14:40:40
收藏
支持
反对