public Function RSQL(strChar)
; [! j6 m# p# {( q If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function
) m+ u8 O/ S5 h) `; J Dim strBadChar, arrBadChar, tempChar, I# c; \0 n/ l# {* E. G. o
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00, U: k- ^: o. U& c' q2 c% C; W
arrBadChar = Split(strBadChar, ",")1 t7 V* X9 S; d1 q( a {1 ?6 z
tempChar = strChar5 M- X1 ?4 X; G
For I = 0 To UBound(arrBadChar)
4 o! ?, Z& t8 s7 S tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
( j- ?! C j1 R0 ~; |" P" q2 M7 o Next4 J8 k' y- {2 Q& b# C
RSQL = tempChar7 O" t! f8 p4 {. R l; z: }- c1 E$ ]
End Function
4 Y' W) C" f9 i& W& f0 z/ w |