public Function RSQL(strChar) }8 P) @6 p/ i. M7 A9 `
If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function/ R! g' ]+ p/ v: j @
Dim strBadChar, arrBadChar, tempChar, I
2 p- b% A0 b( b9 R6 o9 d$ Z! d strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00" W# W# p" Q+ s9 w
arrBadChar = Split(strBadChar, ","). d& i5 H( Q; W" j1 F4 G
tempChar = strChar
) U' e' g/ m: E: e0 ^/ I: M, P For I = 0 To UBound(arrBadChar)
1 x/ Y a4 _2 y5 x tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
. \3 e8 B4 M$ T1 @6 g1 M. M Next
' Z7 Z Q# T( o U L; c C) _# L RSQL = tempChar$ ` ~$ @6 A0 P$ v4 L4 d \0 n1 r
End Function
) E. J$ R% S" ^/ s" g9 [* ? |
发表于 2012-9-15 14:40:40
收藏
支持
反对