常用ASP自定义函数全集(3)_ASP教程

推荐：解读ASP常见错误类型大全
ActiveServerPages,ASP0126(0x80004005)--找不到包含文件 MicrosoftOLEDBProviderforODBCDrivers(0x80040E21)--sql语句出错(数据类型不匹配或表名(字段名)错误或表处于编辑状态，或表不存在于conn打开的数据库中) MicrosoftOLEDBProviderforODBCDrivers(0x800

'防止SQL注入,为了系统的安全，直接在有数据库连接的地方都加上SQL注入的免疫
Function CheckSql()
     Dim sql_injdata  
     SQL_injdata = "'|and|exec|insert|select|delete|update|count|*|%|chr|mid|master|truncate|char|declare"
     SQL_inj = split(SQL_Injdata,"|")
     If Request.QueryString<>"" Then
         For Each SQL_Get In Request.QueryString
             For SQL_Data=0 To Ubound(SQL_inj)
                 if instr(Request.QueryString(SQL_Get),Sql_Inj(Sql_DATA))>0 Then
Response.Write "<Script Language='javascript'>{alert('请不要在参数中包含非法字符！');history.back(-1)}</Script>"
                     Response.end
                 end if
             next
         Next
     End If
     If Request.Form<>"" Then
         For Each Sql_Post In Request.Form
             For SQL_Data=0 To Ubound(SQL_inj)
                 if instr(Request.Form(Sql_Post),Sql_Inj(Sql_DATA))>0 Then
                     Response.Write "<Script Language='javascript'>{alert('请不要在参数中包含非法字符！');history.back(-1)}     </Script>"
                     Response.end
                 end if
             next
         next
     end if
End Function
'--------------------------------
'程序执行时间检测
Function Runtime()
EndTime=Timer()
If EndTime<StartTime Then
     EndTime=EndTime+24*3600
End if
RunTime=(EndTime-StartTime)*1000   '单位毫秒
End Function
'--------------------------------

分享：ASP实现长文章手动分页的代码
% setrecordset1=server.createobject(adodb.recordset) exec=SELECT*FROMnewswhereid=id recordset1.Openexec,conn,1,1 % tablewidth=85%border=0align=centercellpadding=3cellspacing=0 trtd ....... % IfRequest(page)=Then pageNum=0