cz_db.asp

asp写的一个mp3播放器(带源码)

<%@LANGUAGE="VBScript.Encode" CODEPAGE="936"%>
<%
Response.Buffer = True
Server.ScriptTimeOut = 90
On Error Resume Next
dim conn,czdb,action,from_name,to_name,song_name,song_url,czplayer_msg,ip,startime
Dim rs
Dim CuiZ_msg
startime= Timer()

'*********数据库地址*************
czdb="czplayerdb.asp"   '为防止别人下载，上传到服务器前请改名。。

Set conn = Server.CreateObject("ADODB.Connection")
conn.Open "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Server.MapPath(""&czdb&"")


Public Function czleft(str,strlen)   
	dim l,t,c
	l = len(str)
	t = 0
	for i = 1 to l
	c = Abs(Asc(Mid(str,i,1)))
	if c>255 then
	t = t+2
	else
	t = t+1
	end if
	if t >= strlen then
	czleft=left(str,i)&"..."
	exit for
	else
	czleft = str
	end if
	next
	czleft = replace(czleft,chr(10),"")
End Function

 '防非法字符录入
Public Function CzCharThis(ByVal str)
	If Not IsNull(str) And Trim(str) <> "" Then
			str = Replace(str, ">", "&gt;")
			str = Replace(str, "<", "&lt;")
			str = Replace(str, "&#62;", "&gt;")
			str = Replace(str, "&#60;", "&lt;")
			str = Replace(str, "'", "&#39;")
			str = Replace(str, Chr(34), "&quot;")
			str = Replace(str, "%", "％")
			str = Replace(str, "*", "")
			str = Replace(str, "$", "")
			str = Replace(str, "(", "")
			str = Replace(str, ")", "")
			str = Replace(str, """", "")
			str = Replace(str, vbNewLine, "")
			CzCharThis = Trim(str)
	Else
			CzCharThis = ""
	End If
End Function

Private Sub Cz_Admin_err()
'-------------提示信息---------------------
Response.Write "      <body>"
Response.Write "      <table width=""250"" border=""0"" align=""center"" cellpadding=""0"" cellspacing=""0"" class=""tableBorder5"" style=""top:auto;margin-top:200px;"">" & vbCrLf
Response.Write "      <tr>" & vbCrLf
Response.Write "        <td align=""center"" valign=""bottom"" class=""showtitle""><strong>..:提示信息:..</strong></td>" & vbCrLf
Response.Write "      </tr>" & vbCrLf
Response.Write "      <tr>" & vbCrLf
Response.Write "        <td style="" height:60px;padding:10px;"">" & CuiZ_msg & "</td>" & vbCrLf
Response.Write "      </tr>" & vbCrLf
Response.Write "     </table>" & vbCrLf
Response.Write "      </body>"
Response.Write "      </html>"
Response.End
conn.close
Set conn = Nothing
End Sub

Public Function ChkNumeric(ByVal CHECK_ID)
	If CHECK_ID <> "" And IsNumeric(CHECK_ID) Then
			CHECK_ID = CLng(CHECK_ID)
			If CHECK_ID < 0 Then CHECK_ID = 0
		Else
			CHECK_ID = 0
	End If
		ChkNumeric = CHECK_ID
End Function

Public Sub PreventInfuse()
		On Error Resume Next
		Dim SQL_Nonlicet, arrNonlicet
		Dim PostRefer, GetRefer, Sql_DATA
		
		SQL_Nonlicet = "'|;|^|and|exec|insert|select|delete|update|count|*|%|chr|mid|master|truncate|char|declare"
		arrNonlicet = Split(SQL_Nonlicet, "|")
		If Request.Form <> "" Then
			For Each PostRefer In Request.Form
				For Sql_DATA = 0 To UBound(arrNonlicet)
					If InStr(1, Request.Form(PostRefer), arrNonlicet(Sql_DATA), 1) > 0 Then
					Response.Write "<Script Language=JavaScript>alert('安全系统提示！');history.back(-1)</Script>"
					Response.End
					End If
				Next
			Next
		End If

		If Request.QueryString <> "" Then
			For Each GetRefer In Request.QueryString
				For Sql_DATA = 0 To UBound(arrNonlicet)
					If InStr(1, Request.QueryString(GetRefer), arrNonlicet(Sql_DATA), 1) > 0 Then
					Response.Write "<Script Language=JavaScript>alert('安全系统提示！');history.back(-1)</Script>"
					Response.End
					End If
				Next
			Next
		End If
End Sub

%>