Function HTMLEncode(Str)

If Isnull(Str) Then

HTMLEncode = ""

Exit Function

End If

Str = Replace(Str,Chr(0),"", 1, -1, 1)

Str = Replace(Str, """", """, 1, -1, 1)

Str = Replace(Str,"<","<", 1, -1, 1)

Str = Replace(Str,">",">", 1, -1, 1)

Str = Replace(Str, "script", "script", 1, -1, 0)

Str = Replace(Str, "SCRIPT", "SCRIPT", 1, -1, 0)

Str = Replace(Str, "Script", "Script", 1, -1, 0)

Str = Replace(Str, "script", "Script", 1, -1, 1)

Str = Replace(Str, "object", "object", 1, -1, 0)

Str = Replace(Str, "OBJECT", "OBJECT", 1, -1, 0)

Str = Replace(Str, "Object", "Object", 1, -1, 0)

Str = Replace(Str, "object", "Object", 1, -1, 1)

Str = Replace(Str, "applet", "applet", 1, -1, 0)

Str = Replace(Str, "APPLET", "APPLET", 1, -1, 0)

Str = Replace(Str, "Applet", "Applet", 1, -1, 0)

Str = Replace(Str, "applet", "Applet", 1, -1, 1)

Str = Replace(Str, "[", "[")

Str = Replace(Str, "]", "]")

Str = Replace(Str, """", "", 1, -1, 1)

Str = Replace(Str, "=", "=", 1, -1, 1)

Str = Replace(Str, "'", "''", 1, -1, 1)

Str = Replace(Str, "select", "select", 1, -1, 1)

Str = Replace(Str, "execute", "&#101xecute", 1, -1, 1)

Str = Replace(Str, "exec", "&#101xec", 1, -1, 1)

Str = Replace(Str, "join", "join", 1, -1, 1)

Str = Replace(Str, "union", "union", 1, -1, 1)

Str = Replace(Str, "where", "where", 1, -1, 1)

Str = Replace(Str, "insert", "insert", 1, -1, 1)

Str = Replace(Str, "delete", "delete", 1, -1, 1)

Str = Replace(Str, "update", "update", 1, -1, 1)

Str = Replace(Str, "like", "like", 1, -1, 1)

Str = Replace(Str, "drop", "drop", 1, -1, 1)

Str = Replace(Str, "create", "create", 1, -1, 1)

Str = Replace(Str, "rename", "rename", 1, -1, 1)

Str = Replace(Str, "count", "count", 1, -1, 1)

Str = Replace(Str, "chr", "chr", 1, -1, 1)

Str = Replace(Str, "mid", "mid", 1, -1, 1)

Str = Replace(Str, "truncate", "truncate", 1, -1, 1)

Str = Replace(Str, "nchar", "nchar", 1, -1, 1)

Str = Replace(Str, "char", "char", 1, -1, 1)

Str = Replace(Str, "alter", "alter", 1, -1, 1)

Str = Replace(Str, "cast", "cast", 1, -1, 1)

Str = Replace(Str, "exists", "exists", 1, -1, 1)

Str = Replace(Str,Chr(13),"<br>", 1, -1, 1)

HTMLEncode = Replace(Str,"'","''", 1, -1, 1)

End Function

  

通用安全字符串输入,彻底替换server.htmlencode的更多相关文章

  1. Server.HTMLEncode用法

    Server.HTMLEncode用法!! Server.HTMLEncode HTMLEncode 一.HTMLEncode 方法对指定的字符串应用 HTML 编码. 语法 Server.HTMLE ...

  2. HttpUtility.HtmlDecode ,HttpUtility.HtmlEncode 与 Server.HtmlDecode ,Server.HtmlEncode 与 HttpServerUtility.HtmlDecode , HttpServerUtility.HtmlEncode

    HtmlEncode: 将 Html 源文件中不允许出现的字符进行编码,通常是编码以下字符"<".">"."&" 等. ...

  3. 剑指offer 1,输入一个字符串,将字符串的空格替换成%20

    剑指offer 1,输入一个字符串,将字符串的空格替换成%20    function replaceSpace(str){      return str.replace(/\s/g,"% ...

  4. 【C#】C#中的HtmlEncode与HtmlDecode:HttpUtility.HtmlEncode,HttpUtility.HtmlDecode,Server.HtmlEncode,Server.HtmlDecode,WebUtility.HtmlEncode,WebUtility.HtmlDecode

    HtmlEncode(String) 将字符串转换为 HTML 编码字符串. HtmlDecode(String) 将已经为 HTTP 传输进行过 HTML 编码的字符串转换为已解码的字符串. 在we ...

  5. 在Vi里面实现字符串的批量替换

    在Vi里面实现字符串的批量替换. a. 文件内全部替换: %s#abc#def#g(用def替换文件中所有的abc) 例如把一个文本文件里面的"linuxidc.com"全部替换成 ...

  6. python字符串截取与替换的例子

    python字符串截取与替换的多种方法 时间:2016-03-12 20:08:14来源:网络 导读:python字符串截取与替换的多种方法,以冒号分隔的字符串的截取方法,python字符串替换方法, ...

  7. fscanf(格式化字符串输入)

    fscanf(格式化字符串输入) 相关函数 scanf,sscanf 表头文件 #include<stdio.h> 定义函数 int fscanf(FILE * stream ,const ...

  8. asp.net Server.HtmlEncode和HtmlDecode

    <html xmlns="http://www.w3.org/1999/xhtml"><head runat="server">< ...

  9. C字符串输入输出函数

    下面就几个常用的字符串输入输出函数做个小小的总结TAT 使用时添加头文件:#include<stdio.h>. scanf("格式控制字符串",变量地址列表):(pri ...

随机推荐

  1. PHP算法之二分查找和顺序查找

    一.二分查找 (数组里查找某个元素) /** * 二分查找 (数组里查找某个元素) * $k为要查找的关键字(注:待查找的数组元素为奇数个)$low为查找范围的最小键值,$high为查找范围的最大键值 ...

  2. Eclipse Class Decompiler影响class默认打开方式,重新设置Eclipse默认源码打开方式

    安装Eclipse Class Decompiler插件后,Eclipse中的默认源码打开方式被修改为Eclipse Class Decompiler 这不是我喜欢的,因为我希望,源码从网络中获取,当 ...

  3. 【Hadoop代码笔记】通过JobClient对Jobtracker的调用详细了解Hadoop RPC

    Hadoop的各个服务间,客户端和服务间的交互采用RPC方式.关于这种机制介绍的资源很多,也不难理解,这里不做背景介绍.只是尝试从Jobclient向JobTracker提交作业这个最简单的客户端服务 ...

  4. 使用list和tuple

    list Python内置的一种数据类型是列表:list.list是一种有序的集合,可以随时添加和删除其中的元素. 比如,列出班里所有同学的名字,就可以用一个list表示: >>> ...

  5. hdoj 1229 还是A+B

    还是A+B Time Limit: 2000/1000 MS (Java/Others)    Memory Limit: 65536/32768 K (Java/Others)Total Submi ...

  6. hdoj 3371 Connect the Cities

    Connect the Cities Time Limit: 2000/1000 MS (Java/Others)    Memory Limit: 32768/32768 K (Java/Other ...

  7. html标签应用

    <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/ ...

  8. android widget的中文文档

    下文是我翻译于 App Widgets的文章,如果有不当之处请大家指出 app widget是一种嵌入在其他应用(例如主屏幕)和并且能偶接受间接性更新的小应用,你可以自己提供app widget pr ...

  9. JAVA js的escape函数、解析用js encodeURI编码的字符串、utf8转gb2312的函数

    在使用webView时,如果url中参数有中文的话,拦截到的字符串就会类似这样的:http://api.letstar.cn/zq/news.html?id=20&cupName=%E6%B5 ...

  10. SpringMVC 参考文档

    原文地址:http://blog.csdn.net/lufeng20/article/details/7598801