📄 recheck.asp
字号:
<!--#include file="mdb.asp"-->
<!--#include file="inc/format.asp"-->
<!--#include file="inc/error.asp"-->
<!--#include file="inc/CONFIG.asp"-->
<%
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
Response.Write("<script language=javascript>alert('你提交的路径有误,禁止从站点外部提交数据请不要乱改参数!');this.location.href='userlogin.asp';</script>")
response.end
end if
if userfb="no" then
response.write"<SCRIPT language=JavaScript>alert(' 错误提示:\n\n参数非法!非法操作!!\n\n系统设置会员不能发表 !');"
response.write"JavaScript:window.close()</SCRIPT>"
response.end
end if
dim founderr,errmsg,isimage
isimage=true
founderr=false
errmsg=""
set User_UserPoint=conn.execute("select points,usergrade from [user] where userid="&request.Cookies("HX_USER")("uid"))
userPoint=User_UserPoint(0)
userGrade=User_UserPoint(1)
User_UserPoint.close
set User_UserPoint=nothing
if request.Cookies("HX_USER")("Grade")="" then
Grade=0
else
Grade=userGrade
end if
if request.QueryString("hx66")="pic" then'============网友上传图片处理程序
set rs=server.CreateObject("adodb.recordset")
rs.open "select pic_name,pic_pic from pic where pic_name='"&trim(request.form("name"))&"' or pic_pic='"&trim(request.form("pic"))&"'",conn,1,1
if not rs.eof and not rs.bof then
response.write"<SCRIPT language=JavaScript>alert('错误提示:\n\n① 此图片已提交过,正等待审核通过,请不要重复提交!\n\n② 您提交的图片已经存在,感谢你的支持!');"
response.write"JavaScript:window.close()</SCRIPT>"
Response.End
rs.close
end if
sql="select * from pic"
set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
rs.addnew
dim piccatid,picname,picpic,picdesc,pictjuser
piccatid=cint(request.form("piccatid"))
picname=trim(replace(request.form("name"),"'",""))
picpic=trim(replace(request.form("pic"),"'",""))
picdesc=trim(replace(request.form("desc"),"'",""))
pictjuser=trim(replace(request.form("tjuser"),"'",""))
rs("tjuser")=pictjuser
rs("pic_url")="KB"
if picname="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写图片名称!"
else
if strLength(trim(request.form("name")))>30 then
founderr=true
errmsg=errmsg+"<br>"+"<li>图片名称太长,不可以超过30个字符!"
else
rs("pic_name")=picname
end if
end if
if piccatid<1 then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须选择图片所属分类!"
else
rs("piccat_id")=piccatid
end if
if picpic="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写图片地址!"
else
rs("pic_pic")=picpic
rs("pic_spic")=picpic
end if
if picdesc="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写图片的简要说明!"
else
if strLength(trim(request.form("desc")))>100 then
founderr=true
errmsg=errmsg+"<br>"+"<li>图片介绍太长,不可以超过100个字符!"
else
rs("pic_desc")=picdesc
end if
end if
if founderr then
call checkerr()
response.end
else
if Grade=1 then
rs("passed")=0
sql="UPDATE [user] SET points = points + 20 where username='"&pictjuser&"'"
conn.execute (sql)
else
rs("passed")=1
end if
rs.update
rs.close
set rs=nothing
sql="select * from allcount"
set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
rs("piccount")=rs("piccount")+1
rs.update
rs.close
set rs=nothing
end if
elseif request.QueryString("hx66")="web" then'==========网友酷站上传处理程序
set rs=server.CreateObject("adodb.recordset")
rs.open "select cs_name,cs_url from coolsites where cs_name='"&trim(request.form("name"))&"' or cs_url='"&trim(request.form("url"))&"'",conn,1,1
if not rs.eof and not rs.bof then
response.write"<SCRIPT language=JavaScript>alert('错误提示:\n\n① 此酷站已提交过,正等待审核通过,请不要重复提交!\n\n② 您提交的酷站已经存在,感谢你的支持!');"
response.write"JavaScript:window.close()</SCRIPT>"
Response.End
rs.close
end if
sql="select * from coolsites"
set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
rs.addnew
dim cscatid,csname,csurl,cspic,csdesc,cstjuser
cscatid=cint(request.form("cscatid"))
csname=trim(replace(request.form("name"),"'",""))
csurl=trim(replace(request.form("url"),"'",""))
cspic=trim(replace(request.form("pic"),"'",""))
csdesc=trim(replace(request.form("desc"),"'",""))
cstjuser=trim(replace(request.form("tjuser"),"'",""))
rs("tjuser")=cstjuser
if csname="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写酷站名称!"
else
if strLength(trim(request.form("name")))>30 then
founderr=true
errmsg=errmsg+"<br>"+"<li>图片名称太长,不可以超过30个字符!"
else
rs("cs_name")=csname
end if
end if
if cscatid<1 then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须选择酷站所属分类!"
else
rs("cscat_id")=cscatid
end if
if csurl="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写酷站地址!"
else
rs("cs_url")=csurl
end if
if cspic="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写酷站的图片地址!"
else
rs("cs_pic")=cspic
end if
if csdesc="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写酷站的简要说明!"
else
if strLength(trim(request.form("desc")))>100 then
founderr=true
errmsg=errmsg+"<br>"+"<li>酷站的说明太长,不可以超过100个字符!"
else
rs("cs_desc")=csdesc
end if
end if
if founderr then
call checkerr()
response.end
else
if Grade=1 then
rs("passed")=0
sql="UPDATE [user] SET points = points + 20 where username='"&cstjuser&"'"
conn.execute (sql)
else
rs("passed")=1
end if
rs.update
rs.close
set rs=nothing
sql="select * from allcount"
set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
rs("coolsitescount")=rs("coolsitescount")+1
rs.update
rs.close
set rs=nothing
end if
elseif request.QueryString("hx66")="art" then'============网友发表文章处理程序
set rs=server.CreateObject("adodb.recordset")
rs.open "select art_title,art_content from art where art_title='"&trim(request.form("art_title"))&"' or art_content='"&trim(request.form("art_content"))&"'",conn,1,1
if not rs.eof and not rs.bof then
response.write"<SCRIPT language=JavaScript>alert('错误提示:\n\n① 此文章已提交过,正等待审核通过,请不要重复提交!\n\n② 您提交的文章已经存在,感谢你的支持!');"
response.write"JavaScript:window.close()</SCRIPT>"
Response.End
rs.close
end if
sql="select * from art"
set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
rs.addnew
dim poster,artfrom,title,keyword,content,catid,arttjuser
catid=cint(request.form("cat_id"))
title=trim(replace(request.form("art_title"),"'",""))
keyword=trim(replace(request.form("art_keyword"),"'",""))
content=rtrim(replace(request.form("art_content"),"",""))
content=trim(replace(request.form("art_content"),"∈",""))
arttjuser=trim(replace(request.form("tjuser"),"'",""))
rs("tjuser")=arttjuser
if title="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写文章标题!"
else
if strLength(trim(request.form("art_title")))>30 then
founderr=true
errmsg=errmsg+"<br>"+"<li>文章标题太长,不可以超过30个字符!"
else
rs("art_title")=title
end if
end if
if catid<1 then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须选择文章所属分类!"
else
rs("cat_id")=catid
end if
if keyword="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须选择文章的类型!"
else
rs("art_keyword")=keyword
end if
if content="" then
founderr=true
errmsg=errmsg+"<br>"+"<li>你必须填写文章的内容!"
else
if strLength(trim(request.form("art_content")))>6000 then
founderr=true
errmsg=errmsg+"<br>"+"<li>文章的内容太长,不可以超过6000个字符!"
else
rs("art_content")=content
end if
end if
if founderr then
call checkerr()
response.end
else
if Grade=1 then
rs("passed")=0
sql="UPDATE [user] SET points = points + 20 where username='"&arttjuser&"'"
conn.execute (sql)
else
rs("passed")=1
end if
rs.update
rs.close
set rs=nothing
sql="select * from allcount"
set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
rs("artcount")=rs("artcount")+1
rs.update
rs.close
set rs=nothing
end if
elseif request.QueryString("hx66")="down" then'============网友添加资源处理程序
set rs=server.CreateObject("adodb.recordset")
rs.open "select soft_name,soft_url1 from soft where soft_name='"&trim(request.form("name"))&"' or soft_url1='"&trim(request.form("url1"))&"'",conn,1,1
if not rs.eof and not rs.bof then
response.write"<SCRIPT language=JavaScript>alert('错误提示:\n\n① 此资源已提交过,正等待审核通过,请不要重复提交!\n\n② 您提交的资源已经存在,感谢你的支持!');"
response.write"JavaScript:window.close()</SCRIPT>"
Response.End
rs.close
end if
sql="select * from soft"
set rs=server.createobject("adodb.recordset")
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -