public Function RSQL(strChar)& m/ h( i; x# e7 E* ?
If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function( y( \; e! w ?( G' R1 @
Dim strBadChar, arrBadChar, tempChar, I" e: t) L+ G& s* \% a
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00
1 I/ ^/ R) n. _' _! ]) S arrBadChar = Split(strBadChar, ",")
3 ^9 B+ o: F" [! \6 \- T tempChar = strChar
; ` `' X2 p9 y3 i, ]1 j For I = 0 To UBound(arrBadChar)
$ t8 p( H4 B" ^8 G- g! R' j tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
2 z- a4 s8 x6 _" [7 B Next
1 t7 \6 _/ ]2 g6 L( c4 ` RSQL = tempChar
& i% U* t+ r: [5 Q, fEnd Function
8 s" t/ {& k5 j2 Q$ o' F" _- J9 p |