<% Function QueryFilter(Str) Str = Replace(Str, "*", "[INJ]",1,-1,1) Str = Replace(Str, "=", "[INJ]",1,-1,1) Str = Replace(Str, "<", "[INJ]",1,-1,1) Str = Replace(Str, ">", "[INJ]",1,-1,1) Str = Replace(Str, ";", "[INJ]",1,-1,1) Str = Replace(Str, "(", "[INJ]",1,-1,1) Str = Replace(Str, ")", "[INJ]",1,-1,1) Str = Replace(Str, "+", "[INJ]",1,-1,1) Str = Replace(Str, "#", "[INJ]",1,-1,1) Str = Replace(Str, "'", "[INJ]", 1, -1, 1) Str = Replace(Str, "&", "[INJ]", 1, -1, 1) Str = Replace(Str, "%", "[INJ]", 1, -1, 1) Str = Replace(Str, "?", "[INJ]", 1, -1, 1) Str = Replace(Str, "´", "[INJ]", 1, -1, 1) Str = Replace(Str, ",", "[INJ]",1,-1,1) Str = Replace(Str, "UNION", "[INJ]",1,-1,1) Str = Replace(Str, "SELECT", "[INJ]",1,-1,1) Str = Replace(Str, "WHERE", "[INJ]",1,-1,1) Str = Replace(Str, "LIKE", "[INJ]",1,-1,1) Str = Replace(Str, "FROM", "[INJ]",1,-1,1) Str = Replace(Str, "UPDATE", "[INJ]",1,-1,1) Str = Replace(Str, "INSERT", "[INJ]",1,-1,1) Str = Replace(Str, "ORDER", "[INJ]",1,-1,1) Str = Replace(Str, "GROUP", "[INJ]",1,-1,1) Str = Replace(Str, "ALTER", "[INJ]",1,-1,1) Str = Replace(Str, "ADD", "[INJ]",1,-1,1) Str = Replace(Str, "MODIFY", "[INJ]",1,-1,1) Str = Replace(Str, "RENAME", "[INJ]",1,-1,1) Str = Replace(Str, Chr(39), "[INJ]", 1, -1, 1) If InStr(1,Str,"[INJ]",1) then Response.Redirect "Default.asp" end if QueryFilter = Str End Function %> <% ID = Temizle(QueryFilter(Request.QueryString("id"))) Siralama = Temizle(QueryFilter(Request.QueryString("st"))) Order = Temizle(QueryFilter(Request.QueryString("ob"))) %>

360° İSTANBUL

Dosya Adı	Açıklama
Galata Kulesi	Galata Kulesi'nden İstanbul manzarası
Sultanahmet Meydanı	Sultanahmet meydanının 360° çevresi

<%=DikeyBol%>

R E K L A M

<%=Hr%>