%id=request.QueryString("id") If instr(id," ")>0 or instr(id,"'")>0 or instr(id,"’")>0 or instr(id,"‘")>0 then response.redirect ("news.asp") response.end() end if if id<>"" then set rs=server.CreateObject("adodb.recordset") sql="select * from y_news where y_id="&id rs.open sql,conn,3,3 if rs.bof and rs.eof then response.Write("参数错误") else rs("y_hits")=rs("y_hits")+1 rs.update()%>
|
|
About Us --/-- Our Resources --/-- Our Customers --/-- Our Business --/-- Contact Us --/-- Back Home | |
Beijing Secretariat:
|
|