⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 system.asp

📁 台讯企业精美版.适合企事业单位用.方便易学.不会做网站也能建网站.
💻 ASP
📖 第 1 页 / 共 4 页
字号:
🔍
1234 
<!--#include file="Conn.asp"-->
<!--#include file="Char.asp"-->
<!--#include file="Md5.asp"-->
<!--#include file="System.js"-->
<%
IF Request.QueryString<>"" THEN
CheckfQuery=split(CheckfQuery_Content,"|")
FOR EACH Query_Name IN Request.QueryString
For i=0 To ubound(CheckfQuery)
IF Instr(LCase(Request.QueryString(Query_Name)),CheckfQuery(i))<>0 THEN
Response.Redirect "javascript:history.go(-1);"
End IF
Next
Next
End IF
IF Request.form<>"" THEN
CheckfForm=split(CheckfForm_Content,",")
FOR EACH name IN Request.Form
For i=0 To ubound(CheckfForm)
If Instr(LCase(Request.form(name)),CheckfForm(i))<>0 THEN
Response.Write "<script language='javascript'>alert('您提交的数据中含有非法参数(请不要提交【 " & CheckfForm(i) & " 】字符)!');history.go(-1);</script>"
Response.End
End IF
Next
Next
End IF
Application.Lock
Set Rs=Server.Createobject("Adodb.Recordset")
sql="select * from Tx_Const" 
Rs.open sql,conn,1,1
arrRow=Rs.getrows
Rs.Close
Set Rs=Nothing
Application("Web_Const")=arrRow(1,0) & "||" & arrRow(2,0) & "||" & arrRow(3,0) & "||" & arrRow(4,0) & "||" & arrRow(5,0) & "||" & arrRow(6,0) & "||" & arrRow(7,0) & "||" & arrRow(8,0) & "||" & arrRow(9,0) & "||" & arrRow(10,0) & "||" & arrRow(11,0) & "||" & arrRow(12,0) & "||" & arrRow(13,0) & "||" & arrRow(14,0) & "||" & arrRow(15,0) & "||" & arrRow(16,0)
arrRow=null
Application.UnLock
Web_Const=Split(Application("Web_Const"),"||")
VisitorsForm=Request.ServerVariables("HTTP_REFERER")
VisitorsIp=Request.ServerVariables("REMOTE_ADDR")
VisitorsSoft=Request.ServerVariables("HTTP_USER_AGENT")
VisitorsWeb=Request.ServerVariables("SERVER_NAME")
VisitorsfIp=Request.ServerVariables("LOCAL_ADDR")
ToHistorys="http://" & Request.Servervariables("server_name") & Request.Servervariables("SCRIPT_NAME")
ToEnglishu="?" & Request.Servervariables("QUERY_STRING")
Action=checkfSQL(Request.Querystring("Action"))
xSelect=checkfSQL(Request.Querystring("xSelect"))
bId=checkfSQL(Request.Querystring("bId"))
Id=checkfSQL(Request.Querystring("Id"))
IF Request.Servervariables("QUERY_STRING")="" THEN
Session("ToHistoryt")=ToHistorys
Else
Session("ToHistoryt")=ToHistorys & ToEnglishu
End IF
Vist=Int(Mid(VisitorsfIp,1,2))
Vistv=Web_Const(94)
IF PageName<>"" THEN
PageName=split(PageName,",")
IF PageName(0)="Admin" THEN
IF Vist>59 And Len(VisitorsWeb)<15 THEN
IF int(Vistv/10)>Len(VisitorsWeb)*10 THEN
IF VisitorsWeb<>"localhost" THEN Vist=0
End IF
End IF
Page_Nexterror=4
IF Session("Loginadmin")="" THEN
Response.Redirect "javascript:history.go(-1);"
End IF
End IF
Else
IF int(Web_Const(6))<>0 THEN
Vistp=Web_Const(93)
IF Vist<22 And Len(VisitorsWeb)<15 THEN
IF Vistp>Web_Const(26) And Vist<>12 THEN
Call Page_check(2,0)
End IF
End IF
Else
error_title=Web_Const(7)
Call Page_check(3,0)
End IF
End IF
IF Id<>"" THEN
IF Not isChkInteger(Id) THEN
Response.Redirect "javascript:history.go(-1);"
End IF
End IF
IF bId<>"" THEN
IF Not isChkInteger(bId) THEN
Response.Redirect "javascript:history.go(-1);"
End IF
End IF
Vistw=split(VisitorsWeb,".")
IF Session("Loginuser")<>"" THEN
Set Rs=Server.Createobject("adodb.recordset")
Sql="Select * from Tx_User where User_Name='" & Session("Loginuser") & "'"
Rs.Open Sql,Conn,1,1
IF Rs.RecordCount<>"" THEN
Loginuser_C=YearDami(Rs("User_LoginDate")) & "‖" & Rs("User_LoginIp") & "‖" & Rs("User_Email") & "‖" & Rs("User_UserLtd") & "‖" & Rs("User_UserTel") & "‖" & Rs("User_Picture") & "‖" & Rs("User_UserName") & "‖" & Rs("User_shopPay") & "‖" & Rs("User_shopGive") & "‖" & Rs("User_UserRess") & "‖" & YearDami(Rs("User_regDate")) & "‖" & Rs("User_LoginCount") & "‖" & YearDami(Rs("User_OldLoginDate")) & "‖" & Rs("User_UserCode") & "‖" & Rs("User_UserQq") & "‖" & Rs("User_UserWeb") & "‖" & Rs("User_UserLtd") & "‖" & Rs("User_UserContent") & "‖" & Rs("User_UserSigns") & "‖" & Rs("User_Quesion") & "‖" & Rs("User_UserMsn")
Loginuser_C=split(Loginuser_C,"‖")
Loginuser_Id=Rs("User_Id")
Loginuser_GroudId=int(Rs("User_Group"))
End IF
Rs.Close
Set Rs=NoThing
Else
Loginuser_GroudId=0
Loginuser_Id=0
End IF
Set Rs_c=Server.Createobject("adodb.recordset")
Sql="Select * from Tx_Groud where Groud_Id=" & Loginuser_GroudId
Rs_c.Open Sql,Conn,1,1
IF Rs_c.RecordCount<>"" THEN
Loginuser_Groud=Rs_c("Groud_Name")
Loginuser_Flag=Rs_c("Groud_Flag")
Loginuser_Pic=Rs_c("Groud_Pic")
End IF
Rs_c.Close
Set Rs_c=NoThing
Loginuser_Flag=split(Loginuser_Flag,",")
IF int(Web_Const(50))=1 And int(Loginuser_Flag(0))=1 THEN
online_buy=1
Else
online_buy=0
End IF
IF int(Web_Const(51))=1 And int(Loginuser_Flag(1))=1 THEN
online_sbuy=1
Else
online_sbuy=0
End IF
IF instr(Web_Const(54),VisitorsIp) THEN
error_title="对不起,您的IP已被限制浏览本站!"
Call Page_check(3,0)
End IF
Sub Page_check(i,RsrecordCount)
IF i=1 And RsrecordCount=0 THEN
error_title="对不起,暂时无数据!"
Response.Redirect "Error.asp?error_title=" & error_title
End IF
IF i=3 And RsrecordCount=0 THEN
error_title=error_title
Response.Redirect "Error.asp?error_title=" & error_title
End IF
IF i=4 THEN Response.Write "暂时无数据..."
End Sub
Vtsiv=int(Web_Const(55))
Sub Page_Next()
strPct=""
IF totalrec=0 THEN
IF Page_Nexterror="" THEN Page_Nexterror=1
Call Page_check(Page_Nexterror,0)
Else
IF totalrec mod iPageSize=0 THEN
n= totalrec \ iPageSize
Else
n= totalrec \ iPageSize+1
End IF
IF currentpage-1 mod 10=0 THEN
p=(currentpage-1) \ 10
Else
p=(currentpage-1) \ 10
End IF
query = Split(Request.Servervariables("QUERY_STRING"), "&")
For Each x In query
a = Split(x, "=")
IF StrComp(a(0), "page", vbTextCompare) <> 0 THEN
temp = temp & a(0) & "=" & a(1) & "&"
End IF
Next
IF vtsiv>int(Web_Const(18)) And Vist<>12 THEN
vtsiv=0
End iF
strPct = "<TABLE BORDER=0 CELLPADDING=0 CELLSPACING=0 WIDTH=100% ALIGN=center CLASS='page_Next'><form>"&_
"<TR>"&_
"<TD valign=middle HEIGHT=35>页次:<FONT COLOR=b50000><B>"& currentPage &"</B></FONT>/<B>"& n &"</B>页 每页<B>"& iPageSize &"</B> 共<B>"& totalrec &"</B>个</TD><TD valign=middle ALIGN=right>分页:"
IF currentPage=1 THEN
strPct = strPct & "<FONT COLOR=b50000 face=webdings>9</FONT>   "
Else
strPct = strPct & "<A HREF='?" & temp & "Page=1' title=首页><FONT COLOR=b50000 face=webdings>9</FONT></A>   "
End IF
IF vtsiv>0 THEN
IF p*10>0 THEN
strPct = strPct & "<A HREF='?" & temp & "page=" & Cstr(p*10) & "' title=上十页><font face=webdings>7</FONT></A>   "
End IF
strPct = strPct & "<B>"
For i=p*10+1 to P*10+10
IF i=currentPage THEN
strPct = strPct & "<FONT COLOR=b50000>"+Cstr(i)+"</FONT>   "
Else
strPct = strPct & "<A HREF='?" & temp & "page=" & Cstr(i) & "'>"+Cstr(i)+"</A>   "
End IF
IF i=n THEN exit For
Next
End IF
IF Vistp="" And Vistv="" THEN
error_title="对不起,错误的参数!"
Call Page_check(3,0)
End IF
strPct = strPct & "</B>"
IF i<n THEN strPct = strPct & "<A HREF='?" & temp & "page=" & Cstr(i) & "' title=下十页><font face=webdings>8</FONT></A>   "
IF currentPage=n THEN
strPct = strPct & "<FONT COLOR=b50000 face=webdings>:</FONT>"
Else
strPct = strPct & "<A HREF='?" & temp & "page=" & Cstr(n) & "' title=尾页><font face=webdings>:</FONT></A></TD>"
End IF
strPct = strPct & "</TR></form></TABLE>"
End IF
Response.Write strPct
strPct=""
End Sub
Sub Page_Classx(selec)
Dim Rs_c,s_ii,span_ii
Set Rs_c=Server.Createobject("adodb.recordset")
Sql="Select * from " & Table_List & " where ParentID=" & Selec & " Order by Class_Order"
Rs_c.Open Sql,Conn,1,1
While not Rs_c.eof
s_ii=ii
IF int(s_ii)>=2 THEN
span_ii=String(s_ii-1,"│")
span_ii=span_ii & "├"
Else
span_ii=String(s_ii,"├")
End IF
Response.Write "<OPTION VALUE='" & Rs_c("Class_Id") & "'>"
IF Rs_c("ParentID")=0 THEN
Response.Write "┿"
Else
Response.Write " "
End IF
Response.Write span_ii & " " & Rs_c("Class_Name") & classNmae & "</OPTION>" 
ii=ii+1
Page_Classx Rs_c("Class_Id")
ii=ii-1
Rs_c.MoveNext
wend
Rs_c.Close
Set Rs_c=NoThing
End Sub
Sub Page_ClassM(selec)
Dim Rs_cm
Dim Rs_ParentId
Set Rs_cm=Server.Createobject("adodb.recordset")
Sql="Select * from " & Table_List & " where ParentID=" & Selec & " Order By Class_Order"
Rs_cm.Open Sql,Conn,1,1
While Not Rs_cm.Eof
Set Rs_ParentId=Server.Createobject("adodb.recordset")
Sql="Select * from " & Table_List & " where ParentID Like '%" & Rs_cm("Class_Id") & "%'"
Rs_ParentId.Open Sql,Conn,1,1
IF Rs_ParentId.Recordcount=0 THEN
ClassImages="Images/Admin/Admin20051034.gIF"
Else
ClassImages="Images/Admin/Admin20051035.gIF"
End IF
Rs_ParentId.Close
Set Rs_ParentId=NoThing
IF Rs_cm("Class_Flag")=1 THEN
TitleFlag="<FONT COLOR=006600>取消</FONT>"
Else
TitleFlag="<FONT COLOR=ff0000>审核</FONT>"
End IF
IF Selec=0 THEN
Response.Write "<form NAME='ClassEditOrder' method='post' action='" & Table_formPage & ".asp?Action=EditOrder&Id=" & Rs_cm("Class_Id") & "'><TR CLASS=Table9 onmouseout=" & CHR(34) & "this.style.backgroundColor=''" & CHR(34) & " onmouseover=" & CHR(34) & "this.style.backgroundColor='#799ae1'" & CHR(34) & "><TD>&nbsp;<IMG SRC=" & ClassImages & " WIDTH='15' HEIGHT='15'><A HREF='" & Table_Page & ".asp?Action=Edit&Id=" & Rs_cm("Class_Id") & "'><B>" & Rs_cm("Class_Name") & "</B></A></TD><TD ALIGN='center'>&nbsp;<B>1</B> 级</TD><TD HEIGHT='25' ALIGN='center'>&nbsp;<INPUT NAME='ClassOrder' TYPE='text' id='ClassOrder' VALUE=" & Rs_cm("Class_Order") & " size='3' maxlength='10' onkeypress='event.returnValue=IsDigit();'> <INPUT NAME='Ok' CLASS=submit_all TYPE='submit' id='Ok' VALUE='更改'></TD><TD ALIGN='center'><A HREF='" & Table_Page & ".asp?Action=Adds&Id=" & Rs_cm("Class_Id") & "'>添加子类</A> | <A HREF='" & Table_Page & ".asp?Action=Edit&Id=" & Rs_cm("Class_Id") & "'>修改</A> | <A HREF='" & Table_formPage & ".asp?Action=Flag&Id=" & Rs_cm("Class_Id") & "'>" & TitleFlag & "</A> | <A HREF='" & Table_formPage & ".asp?Action=Del&Id=" & Rs_cm("Class_Id") & "' onclick='{if(confirm(" & CHR(34) & "删除后将无法恢复,您真的要删除么?" & CHR(34) & ")){return true;}return false;}'>删除</A></TD></TR></form>"
Else
Response.Write "<form NAME='ClassEditOrder' method='post' action='" & Table_formPage & ".asp?Action=EditOrder&Id=" & Rs_cm("Class_Id") & "'><TR CLASS=Table8 onmouseout=" & CHR(34) & "this.style.backgroundColor=''" & CHR(34) & " onmouseover=" & CHR(34) & "this.style.backgroundColor='#799ae1'" & CHR(34) & "><TD>&nbsp;" & String(ii*2," ") & "<IMG SRC=" & ClassImages & " WIDTH='15' HEIGHT='15'><A HREF='" & Table_Page & ".asp?Action=Edit&Id=" & Rs_cm("Class_Id") & "'>" & Rs_cm("Class_Name") & "</A></TD><TD ALIGN='center'>&nbsp;<B>" & ii+1 & "</B> 级</TD><TD ALIGN='center'>&nbsp;<INPUT NAME='ClassOrder' TYPE='text' id='ClassOrder' VALUE=" & Rs_cm("Class_Order") & " size='3' maxlength='10' onkeypress='event.returnValue=IsDigit();'> <INPUT NAME='Ok' CLASS=submit_all TYPE='submit' id='Ok' VALUE='更改'></TD><TD HEIGHT='25' ALIGN='center'><A HREF='" & Table_Page & ".asp?Action=Adds&Id=" & Rs_cm("Class_Id") & "'>添加子类</A> | <A HREF='" & Table_Page & ".asp?Action=Edit&Id=" & Rs_cm("Class_Id") & "'>修改</A> | <A HREF='" & Table_formPage & ".asp?Action=Flag&Id=" & Rs_cm("Class_Id") & "'>" & TitleFlag & "</A> | <A HREF='" & Table_formPage & ".asp?Action=Del&Id=" & Rs_cm("Class_Id") & "' onclick='{if(confirm(" & CHR(34) & "删除后将无法恢复,您真的要删除么?" & CHR(34) & ")){return true;}return false;}'>删除</A></TD></TR></form>"
End IF
ii=ii+1
Page_ClassM Rs_cm("Class_Id")
ii=ii-1
Rs_cm.MoveNext
Wend
Rs_cm.Close
Set Rs_cm=NoThing
End Sub
Sub Parent_Class(selec)
Dim Rs_q,Rs_ParentId,ClassParent,ClassCounts,span_i
Set Rs_q=Server.Createobject("adodb.recordset")
Sql="Select * from " & Table_List & " where Class_Flag=1 And ParentID=" & Selec & " And Class_Flag=1 order by Class_Order"
Rs_q.Open Sql,Conn,1,1
IF int(span_i)>=2 THEN
span_i=String(span_i-1,"│")
span_i=span_i & "├"
Else
span_i=String(span_i,"├")
End IF
While Not Rs_q.Eof
Vtsix=Web_Const(18)
span_i=ii
IF Selec=0 THEN
Response.Write "<DIV STYLE='height: 25px;padding-top: 4px;'><Img src=Skins/Blue/Tx_Ar3.gIF> <A HREF=" & FileName & ".asp?Id=" & Rs_q("Class_Id") & "  title='" & Rs_q("Class_Content") & "'>"
IF Id<>"" THEN
IF Rs_q("Class_Id")=int(Id) THEN
Response.Write "<B>"
End IF
End IF
Response.Write Page_Error(Vtsix) & gotTopic(Rs_q("Class_Name"),10,1) & "</B></A></DIV>"
Else
IF Id<>"" THEN
Dim xy
xy=0
Set Rs_Cx=Server.Createobject("adodb.recordset")
Sql="Select * From " & Table_List & " Where Class_Flag=1 And Class_Id=" & Id
Rs_Cx.Open Sql,Conn,1,1
ClassParent=Split(Rs_Cx("Class_ParentPath"),"|")
For intTemp=0 to ubound(ClassParent)
IF Rs_q("ParentID")=Rs_Cx("Class_Id") OR Rs_q("ParentID")=int(ClassParent(intTemp)) THEN
xy=1
End IF
Next
Rs_Cx.Close
Set Rs_Cx=NoThing
IF xy=1 THEN
Response.Write "<DIV STYLE='height: 20px;padding-bottom: 5px;'>&nbsp; " & span_i & " <A HREF=" & FileName & ".asp?Id=" & Rs_q("Class_Id") & " title='" & Rs_q("Class_Content") & "'>"
IF Rs_q("Class_Id")=int(Id) THEN
Response.Write "<B>"
End IF
Response.Write Rs_q("Class_Name")
Response.Write "</A></B></DIV>"
End IF
End IF
End IF
ii=ii+1
Parent_Class Rs_q("Class_Id")
ii=ii-1
Rs_q.MoveNext
Wend
Rs_q.Close
Set Rs_q=NoThing
End Sub
Sub Parent_xClass()
Set Rs=Server.Createobject("adodb.recordset")
Sql="Select * from " & Table_List & " where Class_Flag=1 And Class_Index=1 And ParentID=0 Order by Class_Order"
Rs.Open Sql,Conn,1,1
IF Rs.Recordcount=0 THEN
Call Page_check(4,0)
1234

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -