📄 index.asp
字号:
fString = Replace(fString, CHR(32), " ")
fString = Replace(fString, CHR(9), " ")
fString = Replace(fString, CHR(34), """)
fString = Replace(fString, CHR(39), "'")
fString = Replace(fString, CHR(13), "")
fString = Replace(fString, CHR(10) & CHR(10), "</p><p>")
fString = Replace(fString, CHR(10), "<br>")
htmlencode = fString
End If
End Function
Function uhtmlencode(fString)
If not isnull(fString) then
fString = Replace(fString, " ", CHR(32))
fString = Replace(fString, " ", CHR(9))
fString = Replace(fString, """, CHR(34))
fString = Replace(fString, "'", CHR(39))
fString = Replace(fString, "", CHR(13))
fString = Replace(fString, "</p><p>", CHR(10) & CHR(10))
fString = Replace(fString, "<br>", CHR(10))
uhtmlencode = fString
End If
End Function
%>
<html>
<head>
<title><% =Title %></title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<meta http-equiv="Content-Language" content="zh-cn">
<style>
body,td,th {
/*文字大小*/
font-size: 12px;
/*文字颜色*/
color: #2E2E2E;
/*文字行距*/
line-height: 20px;
/*滚动条亮边的颜色*/
scrollbar-3dlight-color:#CCCCCC;
/*滚动条空白部分的颜色*/
scrollbar-highlight-color:#CCCCCC;
/*滚动条凸出部分的颜色*/
scrollbar-face-color:#FFFFFF;
/*上下按钮上三角箭头的颜色*/
scrollbar-arrow-color:#CCCCCC;
/*立体滚动条阴影的颜色*/
scrollbar-shadow-color:#FFFFFF;
/*滚动条强阴影的颜色*/
scrollbar-darkshadow-color:#000000;
/*滚动条的基本颜色*/
scrollbar-base-color:#CCCCCC;
/*滚动条的背景颜色*/
scrollbar-track-color:#FFFFFF;
}
a:link {
color: #2E2E2E;
text-decoration: none;
}
a:visited {
text-decoration: none;
color: #2E2E2E;
}
a:hover {
color: #FF6600;
}
.input {
font-size: 12px;
border: 1px solid #CCCCCC;
background-color: transparent;
width: 130px;
}
.bmit {
font-size: 12px;
border: 1px solid #CCCCCC;
background-color: transparent;
width: 80px;
}
.text{
font-size: 12px;
border: 1px solid #CCCCCC;
background-color: transparent;
}
</style>
</head>
<body bgcolor="#CCCCCC" topmargin="0" leftmargin="0" rightmargin="0" bottommargin="0" marginwidth="0" marginheight="0">
<script language="javascript">
//**********添加调用**********
function Add(the){
//判断昵称如果为空自动输入“网友”
if(the.Books_Name.value==""){
the.Books_Name.value="网友";
}
//判断昵称不能为以下特殊符号
tChk = /^[^ \s~!@#$%\^\&\*\(\)_\+|\-\=\/\?:;'"\[\{\]\}`\.>,<\\]+$/;
if(!tChk.exec(the.Books_Name.value)){
alert("请输入正确的昵称!\n\n昵称必须在1-10位之间,且不得含有特殊符号!");
the.Books_Name.focus();
return false;
}
//判断昵称能大于5个汉字
if(the.Books_Name.value.length>10){
alert("昵称不能大于5个汉字!");
the.Books_Name.focus();
return false;
}
//判断QQ不能小于5
if(the.Books_Qq.value.length<5){
alert("目前没有小于5位数的QQ号码!");
the.Books_Qq.focus();
return false;
}
//判断QQ不能大于9
if(the.Books_Qq.value.length>9){
alert("目前没有大于9位数的QQ号码!");
the.Books_Qq.focus();
return false;
}
//判断QQ只能为数字
if(isNaN(the.Books_Qq.value))
{
alert("有不是数字的QQ吗?");
return false;
}
//判断EMAIL
tChk = /^\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*$/;
if(!tChk.exec(the.Books_Mail.value)){
alert("请输入正确的E-Mail!");
the.Books_Mail.focus();
return false;
}
//判断留言内容只能大于10
if(the.Books_Info.value.length<10){
alert("朋友你这留言也太少了吧,留言不能小于5个汉字!");
the.Books_Info.focus();
return false;
}
//判断留言内容只能小于1200
if(the.Books_Info.value.length>3000){
alert("朋友你在写小说呀?留言不能大于1500个汉字!");
the.Books_Info.focus();
return false;
}
}
//**********登陆后台调用**********
function Login(the){
//判断管理员不能为空
if(the.Admin_User.value==""){
alert("管理员用户名不能为空!");
the.Admin_User.focus();
return false;
}
//判断管理员密码不能为空
if(the.Admin_Pass.value==""){
alert("管理员密码不能为空!");
the.Admin_Pass.focus();
return false;
}
}
//**********删除留言**********
function Del()
{
if(confirm("请确定是否删除留言,删除将无法恢复!"))
return true;
else
return false;
}
//**********添加管理员调用**********
function Addadmin(the){
//判断管理员名称不能为空
if(the.Admin_User.value==""){
alert("管理员名称不能为空!");
the.Admin_User.focus();
return false;
}
//判断管理员密码不能为空
if(the.Admin_Pass.value==""){
alert("管理员密码不能为空!");
the.Admin_Pass.focus();
return false;
}
//判断管理员密码不得小于6个字符
if(the.Admin_Pass.value.length<6){
alert("管理员密码不得小于6个字符!");
the.Admin_Pass.focus();
return false;
}
//判断管理员两次新密码必须相等
if(the.Admin_Pass.value!=the.Password.value){
alert("两次密码不一致!");
the.Admin_Pass.focus();
return false;
}
}
//**********修改管理员调用**********
function AdminModpass(the){
//判断管理员不能为空
if(the.Admin_User.value==""){
alert("管理员用户名不能为空!");
the.Admin_User.focus();
return false;
}
//判断管理员旧密码不能为空
if(the.Admin_Gps.value==""){
alert("管理员旧密码不能为空!");
the.Admin_Gps.focus();
return false;
}
//判断管理员新密码不能为空
if(the.Admin_Nps.value==""){
alert("管理员新密码不能为空!");
the.Admin_Nps.focus();
return false;
}
//判断管理员新密码不得小于6个字符
if(the.Admin_Nps.value.length<6){
alert("管理员新密码不得小于6个字符!");
the.Admin_Nps.focus();
return false;
}
//判断管理员确认密码不能为空
if(the.Admin_Pass.value==""){
alert("管理员确认密码不能为空!");
the.Admin_Pass.focus();
return false;
}
//判断管理员两次新密码必须相等
if(the.Admin_Nps.value!=the.Admin_Pass.value){
alert("两次新密码不一致!");
the.Admin_Nps.focus();
return false;
}
}
//**********删除调用**********
function Deladmin()
{
if(!confirm('确认删除管理员吗?')) return false;
}
</script>
<%
Select Case action
'添加留言调用
Case "add"
'判断是否外部提交
dim From_url,Serv_url
From_url = Cstr(Request.ServerVariables("HTTP_Referer"))
Serv_url = Cstr(Request.ServerVariables("Server_Name"))
If mid(From_url,8,len(Serv_url)) <> Serv_url Then
Response.Write "<script>alert('警告!\n\你正在从外部提交数据!!\n\请立即终止!!');this.location.href='"& Url &"';</SCRIPT>"
Response.End
End If
'二次判断,防止屏蔽JS后提交数据
Books_Name=htmlencode(Request.form("Books_Name"))
Books_Qq=htmlencode(Request.form("Books_Qq"))
Books_Mail=htmlencode(Request.form("Books_Mail"))
Books_Info=htmlencode(Request.form("Books_Info"))
'判断提交数据是否为空
If Books_name="" or Books_qq="" or Books_mail="" or Books_info="" then
Response.Write "<script>alert('姓名、QQ、邮箱、留言必须填写!');this.location.href='"& Url &"';</SCRIPT>"
Response.End
'判断昵称能大于5个汉字
ElseIf len(Books_name)>10 then
Response.Write "<script>alert('昵称能大于5个汉字!');this.location.href='"& Url &"';</SCRIPT>"
Response.End
'判断QQ是否为数字
ElseIf not (isNumeric(Books_Qq) or Books_Qq="") then
Response.Write "<script>alert('有不是数字的QQ吗?');this.location.href='"& Url &"';</SCRIPT>"
Response.End
'判断QQ大于9位数,小于5位数
ElseIf len(Books_Qq)<5 or len(Books_Qq)>10 then
Response.Write "<script>alert('目前没有大于9位数,小于5位数的QQ号码!');this.location.href='"& Url &"';</SCRIPT>"
Response.End
'判断输入正确的E-Mail
ElseIf Instr(Books_mail,".")<=0 or Instr(Books_mail,"@")<=0 then
Response.Write "<script>alert('请输入正确的E-Mail!');this.location.href='"& Url &"';</SCRIPT>"
Response.End
'判断留言内容不能小于5个汉字,大于600个汉字!
ElseIf len(Books_info)>1500 or len(Books_info)<5 then
Response.Write "<script>alert('留言内容不能小于5个汉字,大于1500个汉字!');this.location.href='"& Url &"';</SCRIPT>"
Response.End
Else
Sql="Insert Into [Books] (Books_Name,Books_Mail,Books_Qq,Books_Info,Books_Time,Books_Ip) values ('"& Books_Name &"','"& Books_Mail &"','"& Books_Qq &"','"& Books_Info &"','"& now() &"','"& ip &"')"
conn.execute(Sql)
Response.Redirect Url
Response.End
End If
'回复调用
Case "Reply"
checkadmin
Sql="update [Books] Set Books_Name='"&htmlencode(Request.form("Books_Name"))&"',Books_Qq='"& htmlencode(Request.form("Books_Qq")) &"',Books_Mail='"& htmlencode(Request.form("Books_Mail")) &"',Books_Info='"& htmlencode(uhtmlencode(Request.form("Books_Info"))) &"',Books_Reply='"& htmlencode(Request.form("Books_Reply")) &"'where Books_Id="& Id &""
conn.execute(Sql)
Response.Redirect Url
Response.End
'删除调用
Case "del"
checkadmin
Sql="delete from [Books] where Books_Id="&Id
conn.execute(Sql)
Response.Redirect Url
Response.End
'添加管理员
Case "Addadmin"
checkadmin
dim Admin_User,Admin_pass
Admin_User=htmlencode(Request.form("Admin_User"))
Admin_Pass=Request.form("Admin_Pass")
If Admin_User="" or Admin_Pass="" then
Response.Write "<script>alert('管理员用户名或者密码不能为空!');this.location.href='?Action=Admin_Add';</SCRIPT>"
ElseIf Request("Admin_Pass")<>Request("Password") then
Response.Write "<script>alert('两次密码不一致!');this.location.href='?Action=Admin_Add';</SCRIPT>"
ElseIf len(Admin_Pass)<6 or len(Admin_Pass)>16 then
Response.Write "<script>alert('密码不要小于6个字符大于16个字符!;');this.location.href='?Action=Admin_Add';</SCRIPT>"
Else
Sql="Insert Into [Admin] (Admin_User,Admin_pass) values ('"& Admin_User &"','"& md5(Admin_Pass) &"')"
conn.execute(Sql)
Response.Redirect "?Action=List"
Response.End
End If
'修改管理员密码调用
Case "AdminModpass"
checkadmin
Admin_User=htmlencode(Request.form("Admin_User"))
Admin_Gps=md5(Request.form("Admin_Gps"))
Admin_Nps=md5(Request.form("Admin_Nps"))
Admin_Pass=md5(Request.form("Admin_Pass"))
Set mRs=conn.execute("select * from [Admin] where Admin_Id="& Id &" and Admin_Pass='"& Admin_Gps &"'")
If mRs.eof then
Response.Write "<script>alert('旧密码错误?');this.location.href='?Action=List';</SCRIPT>"
Response.End
End If
Sql="update [Admin] Set Admin_User='"& Admin_User &"',Admin_Pass='"& Admin_Pass &"' where Admin_Id="& Id &""
conn.execute(Sql)
Response.Redirect "?Action=List"
Response.End
'删除管理员
Case "Deladmin"
checkadmin
Sql="delete * from Admin where Admin_Id="& Id
conn.execute(Sql)
Response.Redirect "?Action=List"
Response.End
'登陆后台调用
Case "logincheck"
Admin_User=htmlencode(Request.form("Admin_User"))
Admin_Pass=md5(Request.form("Admin_Pass"))
Set mRs=conn.execute("select * from [Admin] where Admin_User='"&Admin_User&"' and Admin_Pass='"&Admin_Pass&"'")
If not mRs.eof then
Session("Admin")=mRs("Admin_User")
Response.Redirect Url
Response.End
Else
Response.Write "<script>alert('非法操作:用户名或密码错误!');this.location.href='?Action=login';</SCRIPT>"
Response.End
End If
'退出后台调用
Case "logout"
Session.Contents.Remove("Admin")
Response.Redirect Url
Response.End
'修改密码页面
Case "Admin_Modpass"
checkadmin
%>
<table border="0" cellpadding="0" style="border-collapse: collapse" width="778" align="center">
<tr>
<td bgcolor="#FFFFFF" height="300">
<table border="0" cellpadding="3" cellspacing="1" style="border-collapse: collapse" width="260" bgcolor="#CCCCCC" align="center">
<tr>
<td bgcolor="#FFFFFF">
<table border="0" cellpadding="0" style="border-collapse: collapse" width="100%">
<tr>
<td height="25" style="padding-left:10px;">· 管理员帐号修改 ·</td>
<td align="right" style="padding-right:13px;"><a href="<% =Url %>"><font color="#FF0000">返回</font></a></td>
</tr>
</table>
</td>
</tr>
<tr>
<td bgcolor="#FFFFFF">
<table border="0" cellpadding="0" style="border-collapse: collapse" width="100%">
<form name="form2" method="post" Action="?Action=AdminModpass&Id=<% =id %>" onsubmit="return AdminModpass(this);">
<tr>
<td height="25" align="center" width="80">登录名:</td>
<td width="186"><input name="Admin_User" type="text" value="<% =Request.Querystring("Admin") %>" maxlength="16" class="input"></td>
</tr>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -