xxdown_edit_save.asp

本系统为ASP版 1

<%Admin="UserMailList"%>
<!--#include file="check.asp"-->
<%
server_vv=len(Request.ServerVariables("SERVER_NAME"))
server_v1=left(Cstr(Request.ServerVariables("HTTP_REFERER")),server_vv)
server_v2=left(Cstr("http://"&Request.ServerVariables("SERVER_NAME")),server_vv)
if server_v1<>server_v2 and server_v1<>"" and server_v2<>"" then
response.write("<script>alert('错误：禁止从站点外部提交数据!.')</script>")
response.end
end if
%>
<!--#include file="mdb_path_info.asp"-->
<!--#include file="config.asp"-->
<%
savetime=Now()+webtime/24
set rs=server.CreateObject("ADODB.RecordSet")
if request("d")="editsave" then%>
<!--#include file="char.inc"-->                
<%if request.form("tid")="" then errmsg=errmsg & "＂文章类别＂必选! \n"                
if request.form("title")="" then errmsg=errmsg & "＂文章名称＂不能为空! \n"
if request("title")<>"" and request("tid")<>"" then
sql="select * from infodown where title='"&request("title")&"' and tid="&request("tid")
rs.open sql,conn,1,1
if not rs.eof then
 if cint(rs("id"))<>cint(request("id")) then errmsg=errmsg & "本类别内已经有相同的文章了! \n"
end if
rs.close
end if

if errmsg<>"" then
  set rs=nothing
  conn.close
  set conn=nothing
  response.write("<script>alert('" & errmsg & "');history.go(-1)</script>") 
else
		rs.open "select * from infodown where id="&request("id"),conn,1,3
		rs("tid")=request("tid")
		rs("se")=request("se")
		rs("title")=request("title")
		rs("form_user")=request("form_user")
		rs("form_url")=request("form_url")
		  if request("update1")="yes" then
		    rs("date")=savetime
		  end if
		  if request("html")="yes" then
			rs("info")=request("body")
		  else
			rs("info")=htmlencode(request("body"))
		  end if
		rs.update
		rs.close
				
set rs=nothing
conn.close
set conn=nothing
Response.Redirect "xxdown_edit.asp?id="&request("id")&"&d=saveok&update="&request("update")&""
Response.end
end if
end if
%>