Making String SQL Safe
I'm busy working on a content management system for a client and some entries that they want to add have single quotes in the text.
How would I make sure the entered text is SQL safe but without stripping out the '.
I'm busy working on a content management system for a client and some entries that they want to add have single quotes in the text.
How would I make sure the entered text is SQL safe but without stripping out the '.
I am attempting to send an HTML email which a hyperlink that will change based on the user's session ID. I need the hyperlink to display as:
http://www.synergeticsusa.net/admin/shop_cart/detail.asp?id=
WHERE the id = Session("MM_UserID")
However I cannot seem to code this into the html string in the correct syntax, to where id=1 or id=2, etc. Does anyone know the anwser to this problem?The basic code I am using can be found below.
html = html & "<a href=""http://www.synergeticsusa.net/admin/shop_cart/detail.asp?id="">"
html = html & Session("MM_UserID")
html = html & "<IMG SRC=""myImage2.gif""></A><BR><BR>"
html = html & "</br>"
i need to build a billing reports system that stores very secure ditails +plus+ i got to connect it to some customer relations systems that runs on the web(asp sql).
i got 2 options:
writting it in asp and storing all secure ditails in the same secure+ssl sql database.
or to write in visual C/ C++ program that will run on computer and every few minutes will connect to the customers relations system and save all the new data on the computer.
I have one ASP and sends XML data to another ASP which returns Data from a Database. Pretty straight forward, however the XML string is quite long and I would like to pass it to the second ASP via a POST rather then a GET. Problem is that the only way to retrieve the data is to use the BinaryRead method of the Request object.
This data is only text, but I can not find any reference of how to use the data once I have retrieved it?how do I access the Data from the REQUEST.BINARYREAD?
My Interdev works fine, but he can't seem to use dreamweaver. The files open ok, and they save to VSS, but don't show up on the site.
Is there something I'm missing?
Has anyone seen a good solution for Search Engine Safe URLs with Classic ASP? I've been looking for a while and short of using the 404 or installing tool on the server I was hoping there might be something else.In ColdFusion you can do a server.com/myfile.cfm/id/410 and it just works ... (well, after you parse the slashes)
View Replies View RelatedHow would you make it so that people cannot download your .mdb file straight out of your site and see peoples usernames and passwords and then just log in with their info? Is there a way to block people from downloading the access database?
View Replies View RelatedI have an xml file, which is to be updated by an asp script (vbs) when users are submitting forms from their browsers. Now I wonder if there is anything that stops the following to occur: Code:
View Replies View RelatedFor an upcoming test I need to write an explanation of the code on connecting to a databse through a webpage. I wrote the code and the page works, but could someone help me explain this line of code:
SET myConn=SERVER.createobject("adodb.connection")
Does anyone have a clue have to make a quiz in asp using an xml file? I found a good quiz but the code is in asp.net so we can't use it
View Replies View Relatedhow can i identify the user session?and, assuming that i generate my own "session id" for each login carrying it along the requests.how can i, latter, release the session ?
remember that Session_OnEnd( ) don't work well all the time.
i have made a form which passes info from it into a asp page which sends the data to a db, the form has all the relevant details about the student, and also it has username and password which gets sent to the "login" table this table holds the usernames and password.
i want to make a form with username and password that the student can enter his username and password and then if its correct it allows him to pass.how would i do this.
i have a form that submits courses to a database on a server, the form has fields like course name startdate, that kind of thing, i want to be able to create a search form that will bring up courses that are in a certain area, or a certain price, how can i get the info the user has put in the form and then search with those criteria.
View Replies View Relatedif I make an rss feed from my site and put the address into IE, it just flashes and nothing happens. However, if I go to another browser, nothing much happens, but I can view the source and it's proper.
I then copy that source into a whatever.xml file and then upload it. Put that address into IE - and it looks like every other .xml file. The rss feed does validate as well.
So - here's my q: is there any way to get this to show in a friendly manner if clicked on? I'd like to just provide the link to the rss file on my site for people to use (without having to provide instruction of what's inside it).
in rsLink is a URL which I would like to set as a link within rsPic
Code:
<tr>
<td width="220" rowspan="2"><img src="<%=(rsMags.Fields.Item("rsPic").Value)%>"><br>
<%=(rsMags.Fields.Item("rsLink").Value)%> </td>
<td colspan="2" valign="top"><div align="right"><font size="3" face="Verdana, Arial, Helvetica, sans-serif">Issue:<strong><font size="4"><%=(rsMags.Fields.Item("IssueNo").Value)%></font></strong></font></div></td>
</tr>
We have two servers running ASP.NET systems. One is live and one is
development. I have recently adopted an ASP system from a colleague to
nurse it back to health. On the development server it correctly interprets
dates as being british i.e. dd/mm/yyyy, but on the live server it reverts to
the usa format i.e. mm/dd/yy.
Both systems have the appropriate session variable set i.e. Session.LCID =
2057. Both servers have IIS set up in exectly the same way and I'm not in
any way sure that IIS has a say over this in any case.
I already have a skeleton to work off of but this is for a dynamic site. Each page has it's fields in a DB which I will use to search through but my problem has to do with how the system will treat queries.
The site has to do with dairy. How do I proceed to process "the CDC's regulations"...
I'm thinking tokenizing but I don't want the site to search each token individually since it'll bring up each page that contains CDC which can be quite substantial.
I have a folder where i just want to read back images. This works fine until the computer self creates a folder called _notes and this messes up my results.
one how do i just get it to return all images and nothing else, ie none of the subfolders or any other files and second can i stop the self creation of the file? Code:
I am needing to know the best way to have a form submit to itself and have that information availble to the webpage.
View Replies View Relatedso for this weeks project for class I have to create a dynamic page in asp. As of now im completely lost and failing.I was finally able to setup IIS and get everything going. I made a page in asp saying "Hello World". Now the question is what exactly do I need to do to make a dynmaic page in asp? Im assuming he wants me to create a database in say access and pull it up in asp.
Does anyone have a simple database in access they can post a link to so I can download it and also a link to the asp code to display it properly on a page? I want to take a look at the code and see if looking at it I can gain a better understanding of what to do and how asp can help make dynamic pages.
I need to make a form in which if the user selects 'NO' on a radiobutton, that the form will take him 4 or 5 questions down...and if possible maybe disable the ones it skipped?
View Replies View RelatedI have a few textbox to be filled in the form.
Eg:
Fistname: (textbox)
Lastname: (textbox)
I would like to do some checking on user input when he/she submit the form.
Eg:
Fistname: BBB 'error
Lastname: bbb 'correct
If there happens to be error on the user input (eg. user input in uppercase), it will go back to the form and list the errors.
For those error input, their respective textbox will be cleared for user to re-enter again. For those which is correct, the user input is displayed in the textbox (remained unchange). Code:
Does anyone know how to make a Submit button not visible? i know how to disable it, just type disabled in the tag. Any ideas?
View Replies View RelatedHow do I make form fields required if I'm using a formmail.asp script?
Also can I customize the page that visitors are sent to that tells them "you forgot to fill out this part..blah blah blah" ,and if so, how is it done?
I'm trying to make an array of strings to compare to. Each string will be made up of 3 different 4 digit codes with spaces in between each code (ie "1001 2003 3001").
I'm currently using this code to do this but when I write the string out to the screen I only get the <br>. Code:
what will be the code for making graph with excel through asp?
View Replies View RelatedIn a style sheet after someone chooses a page, is it possible to make that link inactive while on that page?
View Replies View Relatedi have an uploadpage where users can upload images. When the image is uploaded my logo is added with aspimage.
the file hasnt been saved before i try loading it with aspimage. How can i make the browser wait 2 secs before executing the next piece of code, to allow the file to be saved properly before trying to access it again ?
I'm using the replace functions but it is case sensitive. I'm doing a search through my DB and I want the keywords I use in the query to come out in bold so basically I do a:
Code:
strResults = searchRS("pgdescription")
for j = 0 to (Ubound(newArray))
strResults = replace(strResults, newArray(j), "<strong>" & newArray(j) & "</strong>")
next
it spits out my results but it doesn't bold them unless they're the exact same case... Anyone know a way to make the replace function ignore cases?
I am putting the thread details into the Thread_Table table, and so creating a new record in that table. THen I need to create a new post in the Post_Table, and need to pass it the ThreadID that I just created in the Thread_Table. Code:
View Replies View RelatedI'm trying to get the syntax for making a field required and also to validate a field
I'm using CDONTS to send my asp thru an IIS.
The from is = to stremail and stremail is = to email address field in my code I want to make the email address field an required field I also want it to validate the field for at least an @ symbol and an "." inside the email address field.
I'd like to know how can I make the first letter of every word on a textbox field, uppercase, automatically. I'd like to use this for the Name and Surname field, but I don't know how... any hint?
View Replies View RelatedWant to trim, replace etc... a variable then pass it to the javascript, how can I do this? I can not put the javascript outside the loop without splitting it to put the onfocus part seperatly which I don't fancy doing.
Any ideas how to get it to to the ASP then JS? I would have though it would do it that way but there we are. Code: