深圳全飞鸿

标题: VB加入简单的防SQL注入 [打印本页]
作者: syant    时间: 2019-5-4 11:56
标题: VB加入简单的防SQL注入
本帖最后由 syant 于 2019-5-4 12:41 编辑

VB加入简单的防SQL注入

  1. Private Sub TextInput_Keypress(KeyAscii As Integer)
  2. On Error GoTo TextInput_KeyPress_Error

  4. If Chr(KeyAscii) = "'" Then KeyAscii = 0
  5. If Chr(KeyAscii) = ";" Then KeyAscii = 0
  6. KeyAscii = TextFilter(KeyAscii, AlphaCap)
  7. If KeyAscii = 13 Then
  8.    ...
  9.    GoTo result
  10.    ...
  11.    result:
  12.       TextInput.SetFocus
  13.       TextInput.SelStart = 0
  14.       TextInput.SelLength = Len(TextInput.text)
  15. End If
  16. Exit Sub
  17. TextInput_KeyPress_Error:
  18.     MsgBox Err.Description, vbExclamation
  19. End Sub
复制代码
作者: syant    时间: 2019-5-4 12:31
  1. Public Function TextFilter(fAsc As Integer, fMode As Integer) As Integer
  2. On Error GoTo ErrorHandle

  4.     Select Case fMode
  5.         Case NumOnly  'Number Only
  6.             TextFilter = IIf(fAsc >= 48 And fAsc <= 57 Or fAsc = 8, fAsc, 0)
  7.         Case NumPoint  'Number & char '.'
  8.             TextFilter = IIf(fAsc >= 48 And fAsc <= 57 Or fAsc = 46 Or fAsc = 8, fAsc, 0)
  9.         Case NumTime  'Number & char ':'
  10.             TextFilter = IIf(fAsc >= 48 And fAsc <= 57 Or fAsc = 58 Or fAsc = 8, fAsc, 0)
  11.         Case AlphaCap  'Alpha Caption
  12.             If fAsc = 39 Then fAsc = 0
  13.             TextFilter = IIf(fAsc >= 97 And fAsc <= 122, fAsc - 32, fAsc)
  14.     End Select
  15.     Exit Function
  16. ErrorHandle:
  17.     MsgBox Err.Description, vbCritical

  19. End Function
复制代码




欢迎光临 深圳全飞鸿 (http://www.nagomes.com/disc/) Powered by Discuz! X3.2