<%
'- zsbs v 3.01 禁止来自添加到“IP阻止列表”的IP留言 -----
sip = Request.Servervariables("REMOTE_addr")
sql = "select * from DenyIP where IPAddr='"&sip&"'"
Set rs = Server.CreateObject("ADODB.Recordset")
rs.Open sql, conn, 1, 3
If Not ( rs.BOF Or rs.EOF ) Then
rs.Close
Set rs = Nothing
Response.Write ""
Response.End()
Else
rs.Close
End If
'- zsbs v 3.01 禁止来自添加到“IP阻止列表”的IP留言 -----
%>
<%
if trim(Request("op"))<>empty then
if Trim(Request.Form("nname"))=empty then
Response.Write ""
elseif Trim(Request.Form("ntitl"))=empty then
Response.Write ""
elseif Trim(Request.Form("ncont"))=empty then
Response.Write ""
else
%>
<%
'------------------- v 1.4 解决留言不会换行的Bug-----------------------
content=HtmlEncode(Request.form("ncont"))
'------------------- v 3.0 Security Encode -----------------------
content = SecEncode( content )
dim sname,ssex,saddr,smail,spage,soicq,shead,stitl,scont,stime,sip,srepflag,stimeflag
'set rs=Server.CreateObject("ADODB.Recordset")
sqlstr="select * from guest"
sip=Request.Servervariables("REMOTE_addr")
sTitle = Request.form("ntitl")
sTitle = replace(sTitle, ">", " ")
sTitle = replace(sTitle, "<", " ")
rs.open sqlstr,conn,1,3
rs.addnew
rs("Name")=Request.form("nname")
rs("Sex")=Request.form("nsex")
rs("Address")=Request.form("naddr")
rs("Email")=Request.form("nmail")
rs("Homepage")=Request.form("npage")
rs("Oicq")=Request.form("noicq")
rs("headpic")=Request.form("nhead")
rs("Title") = sTitle
rs("content")=content
If Request.Form("sec")=1 Then
rs("sec")=1
End If
If Request.Form("RepUnabled")=1 Then
rs("RepUnabled")=True
End If
rs("Date")=Date()
rs("Time")=Time
rs("Ip")=sip
If ifNeedAuditing="NO" Then
rs("ifHadDealAuditing")= True
rs("ifHadPassAuditing") = True
End If
rs.update
rs.close
set rs=nothing
conn.close
set conn=nothing
%>
<%
Response.redirect("state.asp?state=guestsuc")
%>
<%
end if
end if
%>
新留言