public Function RSQL(strChar)
' x# ^2 V' D8 A. ?/ o; \ If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function
5 B" l( C1 i0 o5 r2 m% R Dim strBadChar, arrBadChar, tempChar, I+ s" M8 ?9 I0 o% N; c
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00& W3 _/ f2 B( J! f- H6 v" u; p
arrBadChar = Split(strBadChar, ",")
9 S. o7 P! e2 E) o8 z/ i2 Y* { tempChar = strChar
" f& ? p" x6 x! G7 ` } For I = 0 To UBound(arrBadChar) [- |! o ~- \* n. S
tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空$ { S$ D l1 r& _* x0 ~/ E/ ^' y
Next
6 u* {( C1 J% j- q( a4 b6 ] RSQL = tempChar
* c1 J! q0 z* r; ?4 i0 VEnd Function
0 q5 b ^, L( y( A9 ~ |
发表于 2012-9-15 14:40:40
收藏
支持
反对