admin_wish_edit.asp

于毕业设计与论文以及做课题用-MSK Simulink simulation program for the design and graduation thesis topic, and makin

<!--#include file="../Conn.asp"-->
<!--#include file="Admin_Session.asp"-->
<%
Dim HX33_WishID,Action
HX33_WishID=Trim(Request("HX33_WishID"))
If HX33_WishID="" OR Not  Isnumeric(HX33_WishID) Then
  Response.Write "<script language='javascript'>alert('错误的访问，请正确地执行该页面！！');location='Admin_Wish_List.asp';</script>"
  Response.End() 
End If
Action=Trim(Request("Action"))
If Action="Save" Then
	cauthor = Request.Form("author")
	ccontent = Request.Form("massages")
	cfcolor = Request.Form("qq")
	ccontent=replace(ccontent,"&","")
	ccontent=replace(ccontent,"#","") 
	ccontent=Replace(ccontent,"<","")'左<
	ccontent=Replace(ccontent,">","")'右>
	ccontent=Replace(ccontent,";","")'分号
	ccontent=Replace(ccontent,"'","")'单引号
	ccontent=Replace(ccontent,"""","")'双引号
	ccontent=Replace(ccontent,Chr(9),"")'空格
	ccontent=Replace(ccontent,Chr(10)&Chr(10),"")
	ccontent=Replace(ccontent,Chr(10),"")'回车
	ccontent=Replace(ccontent,Chr(13),"")'回车
	ccontent=Replace(ccontent,Chr(32),"")'空格
	ccontent=Replace(ccontent,Chr(34),"")'双引号
	ccontent=Replace(ccontent,Chr(39),"")'单引号
	ccontent=Replace(ccontent,"script","")'script
	ccontent=Replace(ccontent,"(","")'左(
	ccontent=Replace(ccontent,")","")'右)
	ccontent=Replace(ccontent,"--","")'SQL注释符
	ccontent=Replace(ccontent,"-","")'SQL注释符
	ccontent=Replace(ccontent,"http","http://www.HX33.Net")'SQL注释符
	ccontent=Replace(ccontent,"江泽民","")
	ccontent=Replace(ccontent,"胡锦涛","")
	ccontent=Replace(ccontent,"他妈的","")
	ccontent=Replace(ccontent,"TMD","")
	ccontent=Replace(ccontent,"法轮","")
	ccontent=Replace(ccontent,"法轮功","")
	ccontent=Replace(ccontent,"法轮大法","")
	ccontent=Replace(ccontent,"共产党","")
	
	
	cfcolor=replace(cfcolor,"&","")
	cfcolor=replace(cfcolor,"#","") 
	cfcolor=Replace(cfcolor,"<","")'左<
	cfcolor=Replace(cfcolor,">","")'右>
	cfcolor=Replace(cfcolor,";","")'分号
	cfcolor=Replace(cfcolor,"'","")'单引号
	cfcolor=Replace(cfcolor,"""","")'双引号
	cfcolor=Replace(cfcolor,Chr(9),"")'空格
	cfcolor=Replace(cfcolor,Chr(10)&Chr(10),"")
	cfcolor=Replace(cfcolor,Chr(10),"")'回车
	cfcolor=Replace(cfcolor,Chr(13),"")'回车
	cfcolor=Replace(cfcolor,Chr(32),"")'空格
	cfcolor=Replace(cfcolor,Chr(34),"")'双引号
	cfcolor=Replace(cfcolor,Chr(39),"")'单引号
	cfcolor=Replace(cfcolor,"script","")'script
	cfcolor=Replace(cfcolor,"(","")'左(
	cfcolor=Replace(cfcolor,")","")'右)
	cfcolor=Replace(cfcolor,"--","")'SQL注释符
	cfcolor=Replace(cfcolor,"-","")'SQL注释符
	cfcolor=Replace(cfcolor,"http","http://www.HX33.Net")'SQL注释符
	cfcolor=Replace(cfcolor,"江泽民","")
	cfcolor=Replace(cfcolor,"胡锦涛","")
	cfcolor=Replace(cfcolor,"他妈的","")
	cfcolor=Replace(cfcolor,"TMD","")
	cfcolor=Replace(cfcolor,"法轮","")
	cfcolor=Replace(cfcolor,"法轮功","")
	cfcolor=Replace(cfcolor,"法轮大法","")
	cfcolor=Replace(cfcolor,"共产党","")
	
	
	cauthor=replace(cauthor,"&","")
	cauthor=replace(cauthor,"#","") 
	cauthor=Replace(cauthor,"<","")'左<
	cauthor=Replace(cauthor,">","")'右>
	cauthor=Replace(cauthor,";","")'分号
	cauthor=Replace(cauthor,"'","")'单引号
	cauthor=Replace(cauthor,"""","")'双引号
	cauthor=Replace(cauthor,Chr(9),"")'空格
	cauthor=Replace(cauthor,Chr(10)&Chr(10),"")
	cauthor=Replace(cauthor,Chr(10),"")'回车
	cauthor=Replace(cauthor,Chr(13),"")'回车
	cauthor=Replace(cauthor,Chr(32),"")'空格
	cauthor=Replace(cauthor,Chr(34),"")'双引号
	cauthor=Replace(cauthor,Chr(39),"")'单引号
	cauthor=Replace(cauthor,"script","")'script
	cauthor=Replace(cauthor,"(","")'左(
	cauthor=Replace(cauthor,")","")'右)
	cauthor=Replace(cauthor,"--","")'SQL注释符
	cauthor=Replace(cauthor,"-","")'SQL注释符
	cauthor=Replace(cauthor,"http","http://www.hx33.net")
	cauthor=Replace(cauthor,"江泽民","")
	cauthor=Replace(cauthor,"胡锦涛","")
	cauthor=Replace(cauthor,"他妈的","")
	cauthor=Replace(cauthor,"TMD","")
	cauthor=Replace(cauthor,"法轮","")
	cauthor=Replace(cauthor,"法轮功","")
	cauthor=Replace(cauthor,"法轮大法","")
	cauthor=Replace(cauthor,"共产党","")
	Set Rs=server.CreateObject("Adodb.Recordset")
	Sqlstr="Select * From HX33_LoveWallPosts Where HX33_WishID="&HX33_WishID
	Rs.Open Sqlstr,Conn,1,3
	IF Not Rs.Eof Then
		Rs("HX33_Sender")=cauthor
		Rs("HX33_WishContent")=ccontent
		Rs("HX33_SenderQQ")=cfcolor
		Rs.update()
	End If
 Response.Write "<script language='javascript'>alert('修改成功！');location='Admin_Wish_List.asp';</script>"
  Response.End() 
End If	
Set Rs=server.CreateObject("Adodb.Recordset")
Sqlstr="Select * From HX33_LoveWallPosts Where HX33_WishID="&HX33_WishID
Rs.Open Sqlstr,Conn,1,1
IF Not Rs.Eof Then
%>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link href="css/style.css" rel="stylesheet" type="text/css">
<style type="text/css">
<!--
.style1 {color: #FF0000}
.gray {	COLOR: #666666
}
-->
</style>

<script language = "JavaScript">
function CheckForm()
{
   if (document.myform.author.value=="")
  {
    alert("许愿人不能为空！");
	document.myform.author.focus();
	return false;
  }

  if (document.myform.massages.value=="")
  {
    alert("许愿内容述不能为空！");
	document.myform.massages.focus();
	return false;
  }
  return true;  
}

</script>
</head>
<body onLoad="javascipt:setTimeout('loadForm()',1000);">
<div align="center">
  <table cellpadding="3" cellspacing="1" border="0" width="100%" class="tableBorder" align=center>
    <tr> 
      <th height=50 colspan="2" class="tableHeaderText">新闻添加</th>
    </tr>
	<form name="myform" action="?action=Save" method="post" onSubmit="return CheckForm();">
    <tr>
      <td align="right"  class="forumRowHighlight">许愿人：</td>
      <td align="left"  class="forumRowHighlight"><span class="gray">
        <input name="author" type="text" id="author" onKeyUp="javascript:authsample.innerHTML=this.value;" value="<%=Rs("HX33_Sender")%>" size="40" maxlength="10" />
      </span></td>
    </tr>
    <tr>
      <td width="18%" align="right"  class="forumRowHighlight">联系QQ：</td>
      <td width="82%" align="left"  class="forumRowHighlight"><span class="gray">
        <input name="qq" type="text" id="qq" style="ime-mode:disabled" onKeyUp="javascript:qqsample.innerHTML=this.value;" value="<%=Rs("HX33_SenderQQ")%>" size="40" maxlength="10" onpropertychange="if(/\D/g.test(value))value=value.replace(/\D/g,'')" ondragenter="return false" />
      </span></td>
    </tr>
    <tr>
      <td align="right"  class="forumRowHighlight">许愿内容：</td>
      <td align="left"  class="forumRowHighlight"><span class="gray">
        <textarea name="massages" wrap=physical cols=70 rows=6 
onKeyDown="textCounter(this.form.massages,this.form.remLen,100);" 
onKeyUp="textCounter(this.form.massages,this.form.remLen,100);"><%=Rs("HX33_WishContent")%></textarea>
      </span></td>
    </tr>
    <tr> 
      <td align="right"  class="forumRowHighlight">操作：	  </td>
      <td align="center"  class="forumRowHighlight"><input type="hidden" name="HX33_WishID" value="<%=HX33_WishID%>"><input name="Submit" type="submit" class="button" value="提 交">&nbsp;&nbsp;&nbsp;<input type="button" class="button" value="返 回" onClick="history.back(-1)">
        &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</td>
    </tr>
  </form>
</table>
</div>
</body>
</html>
<%
End If
ConnClose()
%>