public Function RSQL(strChar)
R6 Z4 y$ j/ b* t ^- h* w4 Y* ]% T If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function, m" S8 S/ }3 N4 h" R
Dim strBadChar, arrBadChar, tempChar, I w. ~5 Q3 ?: s D
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00
! _% Y* v$ q2 v P arrBadChar = Split(strBadChar, ",")
, k8 n. M5 C0 t0 `$ J# s' a& I tempChar = strChar
2 n/ G- D8 A8 n# b7 V# l% N For I = 0 To UBound(arrBadChar)
/ k+ L [+ R2 C3 D) a; j9 ] tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空) v J9 c9 Y. m' T& Q9 y! a Y' |
Next& \3 @4 @" U, w9 o" b, p- q! @: P( f
RSQL = tempChar, o4 @" G, r& ~
End Function6 E8 C4 ^% O6 t% y- C7 b
|
发表于 2012-9-15 14:40:40
收藏
支持
反对