public Function RSQL(strChar)1 M) j0 k( D& W, \0 G2 n4 Y
If strChar = "" or IsNull(strChar) Then RSQL = "":Exit Function
- j4 w8 z! ]' K7 I7 E Dim strBadChar, arrBadChar, tempChar, I0 y6 z0 A$ w2 A+ c) Y& ]$ ]" R
strBadChar = "$,#,',%,^,&,?,(,),<,>,[,],{,},/,\,;,:," & Chr(34) & "," & Chr(0) & ""’注意这里过滤的是特殊字符 ‘Chr(34)对应的ASCII码是双引号。Chr(0)其实就是我们上传改包把空格(20)改成的00
" g1 S+ U, O4 ^' q6 z arrBadChar = Split(strBadChar, ",")* ]5 _* U9 P" J+ H, r
tempChar = strChar6 E4 C. P( r* i) V' V' G! I
For I = 0 To UBound(arrBadChar)8 D& p7 Q; @: L
tempChar = Replace(tempChar, arrBadChar(I), "") ‘将特殊字符过滤为空
; t% M2 _3 i7 I( a Next& j0 d$ x! i9 |! X# L' k& E; f5 ?) q; U
RSQL = tempChar) [, N% \7 n3 t
End Function& t# d& c9 y3 h& p* b6 ]+ Q
|
发表于 2012-9-15 14:40:40
收藏
支持
反对