📄 file_upload.asp
字号:
<%@ Language=VBScript %>
<%
Response.Buffer=true
Response.Expires=0
%>
<!--#include file="upload.inc"-->
<!-- #include file="../dsn.asp" -->
<%
ref=Request.QueryString("ref")
keyno=Request.QueryString("keyno")
keyword=Request.QueryString("keyword")
flagfield=Request.QueryString("flagfield")
filefield=Request.QueryString("filefield")
strflag=Request.QueryString("strflag")
tablename=Request.QueryString("tablename")
picsize=Request.QueryString("picsize")
code=Request.QueryString("code")
path="userfiles\"
if flagfield="" then flagfield="picflag"
if filefield="" then filefield="picfile"
if keyword="" then keyword="keyno"
if strflag="" then strflag="0"
if code="" then code=tablename
set cn=server.CreateObject("ADODB.Connection")
cn.Open mycnstr
set rs=server.createobject("ADODB.recordset")
set fs=CreateObject("Scripting.FileSystemObject")
method=Request.QueryString("method")
if method="del" then
if strflag="1" then
sqltext="select "+flagfield+","+filefield+" from "+tablename+" where "+keyword+"='"+keyno+"'"
else
sqltext="select "+flagfield+","+filefield+" from "+tablename+" where "+keyword+"="&keyno
end if
rs.Open sqltext,cn,1,3
if not rs.EOF then
oldname=trim(rs(1))
rs(0)="0"
rs(1)=""
rs.Update
else
Response.End
end if
rs.Close
if fs.FileExists(server.MapPath(path+oldname)) then
fs.DeleteFile(server.MapPath(path+oldname))
end if
end if
htmlname="keyno="+keyno+"&keyword="+keyword+"&flagfield="+flagfield+"&filefield="+filefield+"&strflag="+strflag+"&tablename="+tablename+"&picsize="+picsize+"&code="+code+"&ref="+ref
bz="0"
if Request.ServerVariables("REQUEST_METHOD") = "POST" then
set upload=new upload_5xSoft
set file=upload.file("filename")
formsize=file.filesize
'Response.Write formsize
'Response.Write file.filename
'Response.End
formsize=request.totalbytes
bz="1"
dim fileclass(6)
fileclass(1)="asp"
fileclass(2)="php"
fileclass(3)="htm"
fileclass(4)="html"
fileclass(5)="jsp"
fileclass(6)="js"
if picsize<>"" then
if clng(picsize)<formsize then
bz="0"
sysmess="上传文件太大!文件限为("+picsize+")目前为("&formsize&")"
end if
end if
'Response.Write formsize
'Response.Write picsize
if bz="1" then
if strflag="1" then
sqltext="select "+flagfield+","+filefield+" from "+tablename+" where "+keyword+"='"+keyno+"'"
else
sqltext="select "+flagfield+","+filefield+" from "+tablename+" where "+keyword+"="&keyno
end if
rs.Open sqltext,cn,1,3
if not rs.EOF then
oldname=trim(rs(1))
else
Response.End
end if
fileext=lcase(right(file.filename,3))
do while left(fileext,1)="."
fileext=mid(fileext,2)
loop
for i=1 to 4
Randomize
if i mod 2=1 then
tt=tt&chr(int(rnd*26)+97)
else
tt=tt&chr(int(rnd*10)+48)
end if
next
newname=code&tt&keyno&"."&fileext
file.SaveAs Server.mappath(path+newname) '文件保存
set self=Request.ServerVariables("script_name")'成功上传的检验
if oldname<>"" then
if fs.FileExists(server.MapPath(path+oldname)) then
fs.DeleteFile(server.MapPath(path+oldname))
end if
end if
if fs.FileExists(server.MapPath(path+newname)) then
rs(0)="1"
rs(1)=newname
rs.Update
rs.Close
end if
set rs=nothing
set cn=nothing
Response.Write("<script language=Javascript>")
if ref="1" then
Response.Write("window.opener.location.reload();")
end if
Response.Write("window.close()")
Response.Write("</script>")
end if
end if
if bz="0" then
if strflag="1" then
sqltext="select "+flagfield+","+filefield+" from "+tablename+" where "+keyword+"='"+keyno+"'"
else
sqltext="select "+flagfield+","+filefield+" from "+tablename+" where "+keyword+"="&keyno
end if
'Response.Write sqltext
rs.Open sqltext,cn,1,3
%>
<html>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<style type="text/css">
<!--
body {font-size: 12px; color: #000000; font-family: 宋体}
td {font-size: 12px; color: #000000; font-family: 宋体;line-height:130%}
.t1 {font:12px 宋体;color=000000}
.t2 {font:12px 宋体;color:ffffff}
-->
</style>
</head>
<title>文件上传</title>
<body bgcolor="#FF6633" leftmargin="1" topmargin="0" marginwidth="0" marginheight="0">
<form name="form2" enctype="multipart/form-data" action="file_upload.asp?<%=htmlname%>" method="post" onsubmit="return checkform()">
<table width="100%" border="0" height="100%" bgcolor="#FF6633" cellpadding="2" cellspacing="1">
<tr bgcolor="#FF6633">
<td height="10"> </td>
</tr>
<tr bgcolor="#FFFFFF" align="center">
<td height="280">
<%
if sysmess<>"" then
Response.Write("<font color=red>提示:"+sysmess+"</font><br>")
end if
%>
<%if rs(0)="1" then
if (lcase(right(trim(rs(1)),3))="jpg" or lcase(right(trim(rs(1)),3))="gif") then%>
<img src="<%=path+trim(rs(1))%>" border="0">
<%
else
%>
<table width="80%" border="0" height="60" cellpadding="0" cellspacing="0" align=center valign=top >
<tr><td width=70>文件名:</td><td align=left class=t3><%=trim(rs(1))%></td></tr>
</table>
<%end if%>
<%else%>
现没有文件
<%end if%>
</td>
</tr>
<tr bgcolor="#FFFFFF">
<td>
<table width="100%" border="0">
<tr align="center">
<td>
上传图片文件 <input type="file" name="filename">
</td>
</tr>
<tr align="center">
<td height="5"></td>
</tr>
<tr align="center">
<td>
<%if rs(0)="1" then%>
<input type="button" name="delete" value="删除文件" onclick="Javascript:delpic()">
<%end if%>
<input type="submit" name="Submit" value="上传文件">
<input type="button" name="cancel" value="关闭" onclick="Javascript:window.close()"></form>
</td>
</tr>
</table>
</td>
</tr>
</table>
<%
end if
%>
</form>
</body>
</html>
<script language=Javascript>
function checkform(form1)
{
var filename
filename=document.form2.filename.value;
if (filename=="")
{ return false}
return true
}
function delpic()
{
if (confirm('您确认要删除该文件吗?')==true)
{
window.location.href="file_upload.asp?method=del&<%=htmlname%>"
return false;
}
}
</script>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -