Function HTMLEncode(Str)

If Isnull(Str) Then

HTMLEncode = ""

Exit Function

End If

Str = Replace(Str,Chr(0),"", 1, -1, 1)

Str = Replace(Str, """", """, 1, -1, 1)

Str = Replace(Str,"<","<", 1, -1, 1)

Str = Replace(Str,">",">", 1, -1, 1)

Str = Replace(Str, "script", "script", 1, -1, 0)

Str = Replace(Str, "SCRIPT", "SCRIPT", 1, -1, 0)

Str = Replace(Str, "Script", "Script", 1, -1, 0)

Str = Replace(Str, "script", "Script", 1, -1, 1)

Str = Replace(Str, "object", "object", 1, -1, 0)

Str = Replace(Str, "OBJECT", "OBJECT", 1, -1, 0)

Str = Replace(Str, "Object", "Object", 1, -1, 0)

Str = Replace(Str, "object", "Object", 1, -1, 1)

Str = Replace(Str, "applet", "applet", 1, -1, 0)

Str = Replace(Str, "APPLET", "APPLET", 1, -1, 0)

Str = Replace(Str, "Applet", "Applet", 1, -1, 0)

Str = Replace(Str, "applet", "Applet", 1, -1, 1)

Str = Replace(Str, "[", "[")

Str = Replace(Str, "]", "]")

Str = Replace(Str, """", "", 1, -1, 1)

Str = Replace(Str, "=", "=", 1, -1, 1)

Str = Replace(Str, "'", "''", 1, -1, 1)

Str = Replace(Str, "select", "select", 1, -1, 1)

Str = Replace(Str, "execute", "&#101xecute", 1, -1, 1)

Str = Replace(Str, "exec", "&#101xec", 1, -1, 1)

Str = Replace(Str, "join", "join", 1, -1, 1)

Str = Replace(Str, "union", "union", 1, -1, 1)

Str = Replace(Str, "where", "where", 1, -1, 1)

Str = Replace(Str, "insert", "insert", 1, -1, 1)

Str = Replace(Str, "delete", "delete", 1, -1, 1)

Str = Replace(Str, "update", "update", 1, -1, 1)

Str = Replace(Str, "like", "like", 1, -1, 1)

Str = Replace(Str, "drop", "drop", 1, -1, 1)

Str = Replace(Str, "create", "create", 1, -1, 1)

Str = Replace(Str, "rename", "rename", 1, -1, 1)

Str = Replace(Str, "count", "count", 1, -1, 1)

Str = Replace(Str, "chr", "chr", 1, -1, 1)

Str = Replace(Str, "mid", "mid", 1, -1, 1)

Str = Replace(Str, "truncate", "truncate", 1, -1, 1)

Str = Replace(Str, "nchar", "nchar", 1, -1, 1)

Str = Replace(Str, "char", "char", 1, -1, 1)

Str = Replace(Str, "alter", "alter", 1, -1, 1)

Str = Replace(Str, "cast", "cast", 1, -1, 1)

Str = Replace(Str, "exists", "exists", 1, -1, 1)

Str = Replace(Str,Chr(13),"<br>", 1, -1, 1)

HTMLEncode = Replace(Str,"'","''", 1, -1, 1)

End Function

  

通用安全字符串输入,彻底替换server.htmlencode的更多相关文章

  1. Server.HTMLEncode用法

    Server.HTMLEncode用法!! Server.HTMLEncode HTMLEncode 一.HTMLEncode 方法对指定的字符串应用 HTML 编码. 语法 Server.HTMLE ...

  2. HttpUtility.HtmlDecode ,HttpUtility.HtmlEncode 与 Server.HtmlDecode ,Server.HtmlEncode 与 HttpServerUtility.HtmlDecode , HttpServerUtility.HtmlEncode

    HtmlEncode: 将 Html 源文件中不允许出现的字符进行编码,通常是编码以下字符"<".">"."&" 等. ...

  3. 剑指offer 1,输入一个字符串,将字符串的空格替换成%20

    剑指offer 1,输入一个字符串,将字符串的空格替换成%20    function replaceSpace(str){      return str.replace(/\s/g,"% ...

  4. 【C#】C#中的HtmlEncode与HtmlDecode:HttpUtility.HtmlEncode,HttpUtility.HtmlDecode,Server.HtmlEncode,Server.HtmlDecode,WebUtility.HtmlEncode,WebUtility.HtmlDecode

    HtmlEncode(String) 将字符串转换为 HTML 编码字符串. HtmlDecode(String) 将已经为 HTTP 传输进行过 HTML 编码的字符串转换为已解码的字符串. 在we ...

  5. 在Vi里面实现字符串的批量替换

    在Vi里面实现字符串的批量替换. a. 文件内全部替换: %s#abc#def#g(用def替换文件中所有的abc) 例如把一个文本文件里面的"linuxidc.com"全部替换成 ...

  6. python字符串截取与替换的例子

    python字符串截取与替换的多种方法 时间:2016-03-12 20:08:14来源:网络 导读:python字符串截取与替换的多种方法,以冒号分隔的字符串的截取方法,python字符串替换方法, ...

  7. fscanf(格式化字符串输入)

    fscanf(格式化字符串输入) 相关函数 scanf,sscanf 表头文件 #include<stdio.h> 定义函数 int fscanf(FILE * stream ,const ...

  8. asp.net Server.HtmlEncode和HtmlDecode

    <html xmlns="http://www.w3.org/1999/xhtml"><head runat="server">< ...

  9. C字符串输入输出函数

    下面就几个常用的字符串输入输出函数做个小小的总结TAT 使用时添加头文件:#include<stdio.h>. scanf("格式控制字符串",变量地址列表):(pri ...

随机推荐

  1. 说说单节点集群里安装hive、3\5节点集群里安装hive的诡异区别

    这几天,无意之间,被这件事情给迷惑,不解!先暂时贴于此,以后再解决! 详细问题如下: 在hive的安装目录下(我这里是 /home/hadoop/app/hive-1.2.1),hive的安装目录的l ...

  2. [iOS基础控件 - 6.5] UITableView的数据刷新

    A.需求 1.以LOL英雄列表为蓝本,给其加上实时修改英雄名称的功能 2.使用UIAlertView 3.全局刷新reloadData 4.局部刷新     B.实现 1.使用UIAlertView ...

  3. 配dump文件

    ulimit -c unlimited echo 'ulimit -c unlimited' >>/etc/profile

  4. Oracle- 查询误删数据

    使用flashback table能恢复误删数据. flashback table CONTAINER_CONTENT to timestamp to_timestamp('2010-06-30 22 ...

  5. SQL Server里一些未公开的扩展存储过程

    SQL Server里一些未公开的扩展存储过程 [转帖] 博客天地 www.inbaidu.com SQL Server里一些未公开的扩展存储过程 扩展存储过程(xp)是直接运行在SQL Server ...

  6. 按要求编写Java程序: (1)编写一个接口:InterfaceA,只含有一个方法int method(int n); (2)编写一个类:ClassA来实现接口InterfaceA,实现int method(int n)接口方 法时,要求计算1到n的和; (3)编写另一个类:ClassB来实现接口InterfaceA,实现int method(int n)接口 方法时,要求计算n的阶乘(n!);

    package com.homework2; public class ClassA implements InterfaceA { @Override public int method(int n ...

  7. Ognl表达式语言

    l  OGNL表达式 OGNL是Object Graphic Navigation Language(对象图导航语言)的缩写,它是一个开源项目. Struts2框架使用OGNL作为默认的表达式语言. ...

  8. android飞机游戏敌机移动路径

    基础android的飞机类游戏,与前人一样,由surfaceView绘制游戏画面,另起线程控制绘制时间间隔达到动态效果.这里附上最近自己写的敌机自动飞行路径代码.请大家给点意见. 在敌机管理模块,加入 ...

  9. 2014 ACM/ICPC 鞍山赛区现场赛 D&amp;I 解题报告

    鞍山现场赛结束了呢-- 我们出的是D+E+I三道题-- 吾辈AC掉的是D和I两道,趁着还记得.先在这里写一写我写的两道水题D&I的解题报告吧^_^. D题的意思呢是说星云内有一堆排成一条直线的 ...

  10. Codeforces Round #322 (Div. 2) B. Luxurious Houses 水题

    B. Luxurious Houses Time Limit: 1 Sec Memory Limit: 256 MB 题目连接 http://codeforces.com/contest/581/pr ...