Add Replace Function
I am trying to make the user input form more secure and so I want to use this piece of code
[vbs]Replace(strInput, "'", "''")[/vbs]
but my sql query (which already works) looks like this
[vbs]insSQL = "insert into Details
(ServiceName, Bor_ID, Address, Postcode, Tube, Rail, Bus, Parking,
Tel, Fax, Minicom, Email, Contact, Opening, Eligibility, Access,
OtherFacil, Special, Internet, Other, Cat_ID, URI_ID, Db_ID, Des_ID, Main_ID)
values ('" & Request.Form("ServiceName") & "','" & Request.Form("Borough") & "','" & Request.Form("Address") & "','" & Request.Form("Postcode") & "','" ...[/vbs]
How am I best to implement the code? I tried to do this
[vbs]& Replace(Request.Form("ServiceName"), "'", "''") &[/vbs]
in the actual sql query but I got this error
[vbs]Data type mismatch in criteria expression. [/vbs]
How is it best to do this?
View Replies
ADVERTISEMENT
If I replace "a" with "b", and then I replace "b" with "a", shouldn't I get the same result? That is what I am trying to encode and decode with Replace() function, but it is giving me different things when I replace and replace again. Here is what I am talking about: Code:
View Replies
View Related
I've tried EVERY way i can think of to do this replace function, basically when i go to insert "Do's and Dont's into the database it cuts it off at "Do" because of the ' now ill show you my section of code that i have it in currently:
curdescription = trim(replace(arrTemp(4), "'", "''"))
I have it this way and it doesnt work, and i even had it
curdescription = trim(arrTemp(4))
curdescription = replace(curdescription, "'", "''")
View Replies
View Related
I'm trying to use the replace function to change a variable ie like this:-
replace folder_old, txtOldFoldername,folder_rename
folder_old = c:DocumentsRoot_Testob
txtOldFoldername = bob
folder_rename = newfoldername
all i want to do is to beable to change the name bob to the new folder, is there a easier way to do this or am I on the right track. if i do the replace like this replace(folder_old, " & txtOldFoldername & "," & folder_rename & ")
i get this error:-
Cannot use parentheses when calling a Sub
View Replies
View Related
how can i replace all single quotes in a string to double quotes:
Replace(strLog_text, "'", """)
however, this doesn't work, as you might expect.
View Replies
View Related
I'm trying to replace the pipe character with a null value? Is that possible?I'm trying the following:
Replace(Request("strategyA"), "|", "")
I can't get it to work.Is my syntax incorrect?
View Replies
View Related
I'm making an email system, except it doesn't work when the name has spaces in it. Therefore, I want to replace these with "%20"s. Code:
View Replies
View Related
I have this code i would like to replace some html in a file with nothing before i insert into db. I am getting this error
Microsoft VBScript compilation error '800a0409'
Unterminated string constant Code:
View Replies
View Related
I need to replace several letters to different strings ,I need it in one variable .How can I do that?
If InStr(1,request.form("S8"),"A",1)>0
or InStr(1,request.form("S8"),"B",1)>0
or InStr(1,request.form("S8"),"C",1)>0 then
a=Replace(request.form("S8"),"A","You could use occasionally")
b=Replace(request.form("S8"),"B","You could use often")
c=Replace(request.form("S8"),"C","You would actively promote")
End if
View Replies
View Related
I want a replace function which replaces all double quotes with single quotes.
eg :-- It'''''s my post.
So after replacing it shud give me -- It's my post.Basically i want a recursive replace function.
View Replies
View Related
i am new to asp and i am having problems using the replace() function to replace occurrences of text in a string.basically what i want to do is replace any occurrences of a double quote (") in a string with "
the code i am using looks like this:
set overview=replace(overview,"""",""")
but when i run load the page i get the following error:
Microsoft VBScript runtime error '800a01a8'
Object required: '[string: "A 13 year old girl p"]'
/ASP/index.asp, line 58
did i get the syntax wrong? i figured that if i was looking for a single quote that i just had to put an escaped double quote "" inside of the quotes.
View Replies
View Related
I have searched so many "Replace" function topics, but there is something that I don't understand....I found some like this... Replace(strField, " ' ", " ' ' ") .... do anyone knows what's the use of replacing ' with ' ' ?
View Replies
View Related
I need help with this one line of code that im having trouble putting together.
[VBS]<%= Replace(Recordset.Fields.Item("MyField").Value,"<" "& lt")%>[/VBS]
this allows me to display raw code on a page that is entered into an Access memo field. Trouble is it all comes out in one line, so i tried adding a [VBS]VbClRf, "<BR>"[/VBS] to it and am getting string errors. Ive tried a few variations and it's really bugging me.
View Replies
View Related
I was wondering if any one could help me, I'm try to insert this info in to my database o'farrel and I'm using this Code:
mail1 = replace(Request.Form("email1"),"'","''")
when it inserts the information it looks like this for the email link O'fo@site.com .
View Replies
View Related
i have stuffed some comment from database within teaxtarea, problem is text are displaying as cobination of data and html tag like <br> (data and <br>) like as follows
this is the first line means<br> this is the second line. i wrote replace code as comment=replace(comment,vbcrlf,"<br>") while adding this comment to database. how could i come out from this problem.
View Replies
View Related
Code:
ln = Trim(getLive("liveName"))
ln = replace(ln, "'", "''")
ln = replace(ln, chr(34), chr(34))
ln = replace(ln, "=", chr(61))
ln = replace(ln, "_", chr(95))
ln = Replace(ln, "../", chr(46)&chr(46)&chr(47))
ln = Replace(ln, "--", chr(45)&chr(45))
ln = Replace(ln, ";", chr(59))
I have the above code... is the bit where I am replacing "../" valid or can I get rid of the "&"? Can't test it at the moment so that's why I am asking here.
View Replies
View Related
I seem to end up with too many double quotes when using this clean up function.. either that or I am missing a display function when I display the details from the dB.
My function
Code:
Function CleanFormFields(FieldString)
FieldString = Replace(FieldString, "�", "'")
FieldString = Replace(FieldString, "�", """""")
FieldString = Replace(FieldString, "�", """""")
FieldString = Replace(FieldString,"""","""""")
FieldString = Replace(FieldString, "'", "''")
FieldString = Trim(FieldString)
CleanFormFields = FieldString
End Function
I only really wanted the microsoft ouble quote to become one set of double quote instead of double as I have here but I can't get away with anything less.
essentially when I input a � I get a "" when I only want ".
View Replies
View Related
Can the replace() function in asp be used on an excel spreadsheet? I can't seem to find out anywhere, and I can't just test and see because my connection string keeps throwing Microsoft OLE DB Provider for ODBC Drivers (0x80004005)
[Microsoft][ODBC Excel Driver]General error Unable to open registry key 'Temporary (volatile) Jet DSN for process 0x664 Thread 0x19b8 DBC 0xebb6e6c Excel' . (but thats another story/future post perhaps ) I pretty much just need to know if replace() will work.
View Replies
View Related
Does anyone know of a function (preferably already made) that would replace a string starting from it's start position to it's end position with a specific string...
so like have four parameters:
(StringToSearch, ReplaceString, WhereToStartReplacing, WhereToEndReplacing)
View Replies
View Related
I have this piece of code in an ASP page: replace (strRootDir, "", "/", -1) When I run the script I get:
Microsoft VBScript compilation (0x800A0414)
Cannot use parentheses when calling a Sub
II remove the parenthese then I get:
Microsoft VBScript compilation (0x800A0401)
Expected end of statement
Everthing that I found on the web (and in Studio help) indicates that "REPLACE (String, ToFind, With, Count)" is correct. What am I doing wrong?
View Replies
View Related
I try to use the replace function with a very long text and I have this error :
error '80020009'
Exception occurred.
Do you have any idee to resolve this problem ?
View Replies
View Related
I use a replace char function to remove any bad words from user's input to prevent SQL injection. Here is what I use:
Function killChars(strWords)
Dim badChars, newChars
badChars = Array("bad words here")
newChars = strwords
For i=0 to uBound(badChars)
newChars = replace(newChars, badChars(i), "")
next
killChars=newChars
End function
Now the problem is if a user enter "DeLETe" in the input box, and this word is not get removed before entering the DB. because I entered "delete" in the badchars array.
so how can I enable a case sensitive in my function? So the bad words would get deleted regardless its in upper or lower case?
View Replies
View Related
i need to retrive record form database for a particular DATE and particular name i have to pass date and name thro "form" then i have to display that particular record . how to proceed.
View Replies
View Related
In the ASP page that is in question, I build a large string (no more
than 10K) which is basically an email template in HTML format. Then I
replace the parts with the values, which are also strings with the size
of 1-2 KB. Code:
View Replies
View Related
I need to insert field data with apostrophes into Access. However, I keep getting "object expected" errors when I post. I heard about using the replace function like this:
var incidentlocation = Replace(Request.Form("incidentlocation"), "'", "''");
but I get the "object expected" error. What I am doing wrong? My code is below in the text file.
View Replies
View Related
I just realized that when I do a replace:
replace(rs("IMAGE"),".jpg","")
it replaces all instances of a lower case .jpg but not the upper case
..JPG
How can I fix this?
View Replies
View Related
What's the difference between private and public functions in ASP? When should I use either?
View Replies
View Related
I am using a simple guestbook /portal and i want script to send mail to the thread owner when someone reply his message.
this is the send message code ....
View Replies
View Related
some text is coming out of the DB with different urls in it, i want to delink it (like href="#" or something), how do i do that when i don't know what url is coming out?
View Replies
View Related
I've got a function that I use to replace ' marks so the page will insert properly into a database - typically I use .Code:
whatever= request.form("whatever")
whatever = replace(whatever,"'", "''")
However, I've got some code that I unfortunately inherited from someone else that I can't get the replace to work:Code:
call buildquery (colq,valq,retq,"whatever")
colq = "(" & colq & ")"
valq = "(" & valq & ")"
ssql = "insert into table_name " & colq & " values " & valq
I was trying to do something in the call buildquery line to add a replace, but that doesn't seem to work.
View Replies
View Related
How do I take out double quotes before writing to database? As doing ,""",""e;" created an error.Is it something like ,chr(34),""e;" which I sort of stumbled accross when I did soem google searching... But what and where do these chr(34) etc coem from?
View Replies
View Related
I have lots of textbox that needs to have data entry. Is it possible for me to replace the tab key to return key that transfers the focus from one textbox to another? And also, how to submit the form after all textbox have values?
View Replies
View Related
I come across this often
PHP Code:
Replace(rs.fields("Headline_f"),"''","'")
Where rs.fields("Headline_f") is actually empty.
I usually use
PHP Code:
IF NOT isNull(rs.fields("Headline_f")) or rs.fields("Headline_f") = "" THEN
Headline_f=Replace(rs.fields("Headline_f"),"''","'")
END IF
Is there a better way to handle this?
View Replies
View Related