BBSXP̳New.aspҳ˲ϵSQLע©

©汾:

BBSXP7.3
BBSXP2008
©:

New.asp



Sort=HTMLEncode(Request("Sort")) //24

if Sort = empty then
SqlSort="ThreadID"
else
SqlSort=Sort
end if

sql="Select top "&SqlTopicCount&" * from ["&TablePrefix&"Threads] where Visible=1 "&SqlForumID&" "&SqlTimeLimit&" order by "&SqlSort&" desc" //66

˺HTMLEncode ļBBSXP_Class.aspУ
Function HTMLEncode(fString)
fString=Replace(fString,CHR(9),"")
fString=Replace(fString,CHR(13),"")
fString=Replace(fString,CHR(22),"")
fString=Replace(fString,CHR(38),"&#38;") '&
fString=Replace(fString,CHR(32),"&#32;") ' 
fString=Replace(fString,CHR(34),"&quot;") '"
fString=Replace(fString,CHR(39),"&#39;") ''
fString=Replace(fString,CHR(42)&CHR(42),"&#42;&#42;") '**/**/
fString=Replace(fString,CHR(44),"&#44;") ',
fString=Replace(fString,CHR(45)&CHR(45),"&#45;&#45;") '--
fString=Replace(fString,CHR(60),"&#60;") '<
fString=Replace(fString,CHR(62),"&#62;") '>
fString=Replace(fString,CHR(92),"&#92;") '\
fString=Replace(fString,CHR(59),"&#59;") ';
fString=Replace(fString,CHR(10),"<br>")
fString=ReplaceText(fString,"([&#])([a-z0-9]*)&#59;","$1$2;")

if SiteConfig("BannedText")<>"" then fString=ReplaceText(fString,"("&SiteConfig("BannedText")&")",string(len("&$1&"),"*"))

if IsSqlDataBase=0 then 'Ƭ(ַ)[\u30A0-\u30FF] by yuzi
fString=escape(fString)
fString=ReplaceText(fString,"%u30([A-F][0-F])","&#x30$1;")
fString=unescape(fString)
end if

HTMLEncode=fString
End Function
HTMLEncodeTabո** .
SqlSort˲ϵsqlע©Ĳ


 <* ο
 yamato[BCT]
 
*>