<%@LANGUAGE="VBSCRIPT" CODEPAGE="65001"%> <% SQL_injdata =":|;|>|<|--|sp_|xp_|\|dir|cmd|^|(|)|+|$|'|copy|format|and|exec|insert|select|delete|update|count|*|%|chr|mid|master|truncate|char|declare" SQL_inj = split(SQL_Injdata,"|") If Request.QueryString<>"" Then For Each SQL_Get In Request.QueryString For SQL_Data=0 To Ubound(SQL_inj) if instr(Request.QueryString(SQL_Get),Sql_Inj(Sql_DATA))>0 Then Response.Write "Error:508" Response.end end if next Next End If If Request.Form<>"" Then For Each Sql_Post In Request.Form For SQL_Data=0 To Ubound(SQL_inj) if instr(Request.Form(Sql_Post),Sql_Inj(Sql_DATA))>0 Then Response.Write "Error:508" Response.end end if next next end if%> <%GetSeoOrDetail "" ,"","","资料下载","" aid = Request.QueryString("aid")*1 'bid = Request.QueryString("bid")*1 fileName = "download" ttName = "资料下载" ttName_en = "Download" SQLWhere = "1=1"'"cgotourl='"&fileName&"' " s_pro = nDacs.Nohtml(request("s_pro")) if s_pro<>"" then SQLWhere = SQLWhere &" and xinghao like '%"&nDacs.Request_Text("s_pro",1)&"%'" qLink = "&s_pro="&server.URLEncode(request("s_pro")) end if %> <%=seotitle%>
当前位置:首页 >> 资料下载

<%if request.Form("s_pro")<>"" then%>搜索结果<%else%>资料下载<%end if%>

Download

产品报价与资料搜索:

<% arrU = nDacs.getArr("id,xinghao,danjia,kucun,downurl","pro_baojia",sqlwhere,"id desc",10) for i=0 to arrLen 'datetime = nDacs.setDateType(arrU(2,i),1) %> <%next%>
产品型号 单价 库存 资料下载
<%=arrU(1,i)%> <%=arrU(2,i)%> <%if arrU(3,i)<>"" then%><%=arrU(2,i)%><%else%>电话咨询<%end if%> 下载
<% if i>=0 then call nDacs.Urlpage11(page,iPageSize,xcount,maxpage,fileName) %>