%
Function QueryFilter(Str)
Str = Replace(Str, "*", "[INJ]",1,-1,1)
Str = Replace(Str, "=", "[INJ]",1,-1,1)
Str = Replace(Str, "<", "[INJ]",1,-1,1)
Str = Replace(Str, ">", "[INJ]",1,-1,1)
Str = Replace(Str, ";", "[INJ]",1,-1,1)
Str = Replace(Str, "(", "[INJ]",1,-1,1)
Str = Replace(Str, ")", "[INJ]",1,-1,1)
Str = Replace(Str, "+", "[INJ]",1,-1,1)
Str = Replace(Str, "#", "[INJ]",1,-1,1)
Str = Replace(Str, "'", "[INJ]", 1, -1, 1)
Str = Replace(Str, "&", "[INJ]", 1, -1, 1)
Str = Replace(Str, "%", "[INJ]", 1, -1, 1)
Str = Replace(Str, "?", "[INJ]", 1, -1, 1)
Str = Replace(Str, "´", "[INJ]", 1, -1, 1)
Str = Replace(Str, ",", "[INJ]",1,-1,1)
Str = Replace(Str, "UNION", "[INJ]",1,-1,1)
Str = Replace(Str, "SELECT", "[INJ]",1,-1,1)
Str = Replace(Str, "WHERE", "[INJ]",1,-1,1)
Str = Replace(Str, "LIKE", "[INJ]",1,-1,1)
Str = Replace(Str, "FROM", "[INJ]",1,-1,1)
Str = Replace(Str, "UPDATE", "[INJ]",1,-1,1)
Str = Replace(Str, "INSERT", "[INJ]",1,-1,1)
Str = Replace(Str, "ORDER", "[INJ]",1,-1,1)
Str = Replace(Str, "GROUP", "[INJ]",1,-1,1)
Str = Replace(Str, "ALTER", "[INJ]",1,-1,1)
Str = Replace(Str, "ADD", "[INJ]",1,-1,1)
Str = Replace(Str, "MODIFY", "[INJ]",1,-1,1)
Str = Replace(Str, "RENAME", "[INJ]",1,-1,1)
Str = Replace(Str, Chr(39), "[INJ]", 1, -1, 1)
If InStr(1,Str,"[INJ]",1) then
Response.Redirect "Default.asp"
end if
QueryFilter = Str
End Function
%>
<%
Harfler = "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
Aranan = Temizle(QueryFilter(Request.QueryString("aranan")))
Bolgesi = Temizle(QueryFilter(Request.QueryString("bolge")))
Harf = Temizle(QueryFilter(Request.QueryString("harf")))
%>
<%
KayitSayisi = 21
If QueryFilter(Request.QueryString("s")) <> "" Then
Sayfa = CInt(QueryFilter(Request.QueryString("s")))
Else
Sayfa = 1
End If
If Aranan <> "" Then
SQL = "SELECT * FROM tblHavayolu WHERE fldIsim LIKE '%" & Aranan & "%' LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi
Set SQLTop = Bag.Execute("SELECT COUNT(fldID) FROM tblHavayolu WHERE fldIsim LIKE '%" & Aranan & "%'")
TopKayit = SQLTop(0)
ElseIf Bolgesi <> "" Then
SQL = "SELECT * FROM tblHavayolu WHERE fldKategori='" & Bolgesi & "' LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi
Set SQLTop = Bag.Execute("SELECT COUNT(fldID) FROM tblHavayolu WHERE fldKategori='" & Bolgesi & "'")
TopKayit = SQLTop(0)
ElseIf Harf <> "" Then
SQL = "SELECT * FROM tblHavayolu WHERE fldIsim LIKE '" & Harf & "%' LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi
Set SQLTop = Bag.Execute("SELECT COUNT(fldID) FROM tblHavayolu WHERE fldIsim LIKE '" & Harf & "%'")
TopKayit = SQLTop(0)
Else
SQL = "SELECT * FROM tblHavayolu LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi
Set SQLTop = Bag.Execute("SELECT COUNT(fldID) FROM tblHavayolu")
TopKayit = SQLTop(0)
End If
Set Havayolu = Bag.Execute(SQL)
%>
Havayolu Şirketi
|
URL
|
<%
If Not Havayolu.EOF Then
i=0
Do While Not Havayolu.EOF
If i Mod 2 = 0 Then
Bg = "#FFFFFF"
Else
Bg = "#F2F2F2"
End If
%>
<%=Havayolu("fldIsim")%>
|
" style="color:#9494FF" target="_blank"><%=Havayolu("fldURL")%>
|
<% i=i+1: Havayolu.MoveNext: Loop %>
<%
If CInt(TopKayit) > CInt(KayitSayisi) Then
SayfaSayisi = CInt(TopKayit) / CInt(KayitSayisi)
If InStr(1,SayfaSayisi,",",1) > 0 Then SayfaSayisi = CInt(Left(SayfaSayisi,InStr(1,SayfaSayisi,",",1))) + 1
If SayfaSayisi > 1 Then
Response.Write "Devam: "
TopKayit = SayfaSayisi
TopSayfa = 10
Onceki = Sayfa - (TopSayfa/2)
If Onceki <= 0 Then Onceki = 1
Sonraki = Sayfa + (TopSayfa/2)
If Sonraki < TopSayfa Then Sonraki = TopSayfa
If Sonraki > TopKayit Then Sonraki = TopKayit
If Onceki <> 1 Then Response.Write "<< İlk | "
For i=Onceki To Sayfa-1
Response.Write "" & i & " - "
Next
Response.write "[" & Sayfa & "] "
If Sayfa <> TopKayit Then Response.Write "- "
For i=Sayfa+1 To Sonraki
Response.Write "" & i & " "
If i <> Sonraki Then Response.Write "- "
Next
If Sonraki <> TopKayit Then Response.Write "| Son >> "
End If
End If
%>
|
<% Else %>
Veritabanında Kayıt Bulunamadı!
|
<% End If %>
|
<%=DikeyBol%>
|
|
<%=Hr%>