<% Function QueryFilter(Str) Str = Replace(Str, "*", "[INJ]",1,-1,1) Str = Replace(Str, "=", "[INJ]",1,-1,1) Str = Replace(Str, "<", "[INJ]",1,-1,1) Str = Replace(Str, ">", "[INJ]",1,-1,1) Str = Replace(Str, ";", "[INJ]",1,-1,1) Str = Replace(Str, "(", "[INJ]",1,-1,1) Str = Replace(Str, ")", "[INJ]",1,-1,1) Str = Replace(Str, "+", "[INJ]",1,-1,1) Str = Replace(Str, "#", "[INJ]",1,-1,1) Str = Replace(Str, "'", "[INJ]", 1, -1, 1) Str = Replace(Str, "&", "[INJ]", 1, -1, 1) Str = Replace(Str, "%", "[INJ]", 1, -1, 1) Str = Replace(Str, "?", "[INJ]", 1, -1, 1) Str = Replace(Str, "´", "[INJ]", 1, -1, 1) Str = Replace(Str, ",", "[INJ]",1,-1,1) Str = Replace(Str, "UNION", "[INJ]",1,-1,1) Str = Replace(Str, "SELECT", "[INJ]",1,-1,1) Str = Replace(Str, "WHERE", "[INJ]",1,-1,1) Str = Replace(Str, "LIKE", "[INJ]",1,-1,1) Str = Replace(Str, "FROM", "[INJ]",1,-1,1) Str = Replace(Str, "UPDATE", "[INJ]",1,-1,1) Str = Replace(Str, "INSERT", "[INJ]",1,-1,1) Str = Replace(Str, "ORDER", "[INJ]",1,-1,1) Str = Replace(Str, "GROUP", "[INJ]",1,-1,1) Str = Replace(Str, "ALTER", "[INJ]",1,-1,1) Str = Replace(Str, "ADD", "[INJ]",1,-1,1) Str = Replace(Str, "MODIFY", "[INJ]",1,-1,1) Str = Replace(Str, "RENAME", "[INJ]",1,-1,1) Str = Replace(Str, Chr(39), "[INJ]", 1, -1, 1) If InStr(1,Str,"[INJ]",1) then Response.Redirect "Default.asp" end if QueryFilter = Str End Function %> <% FID = Temizle(QueryFilter(Request.QueryString("fid"))) Ulke = B64Decode(Temizle(QueryFilter(Request.QueryString("ulke")))) %>
<% If FID = "" Then %>
ÜLKELER
<% SET Ulkeler = Bag.Execute("SELECT DISTINCT(fldTrKategoriAdi), fldKucukBayrak FROM tblFotograflar WHERE fldTrKategoriAdi <> 'istanbul' AND fldGonderen=''") Do While Not Ulkeler.EOF Set FSay = Bag.Execute("SELECT COUNT(fldID) FROM tblFotograflar WHERE fldTrKategoriAdi='" & Ulkeler("fldTrKategoriAdi") & "' AND fldGonderen=''") %> " id="Text">" align="absmiddle" hspace="1" vspace="1" style="border:1px solid #000000" alt="<%=Ulkeler("fldTrKategoriAdi")%>" border="0"> " <% If Ulke=Ulkeler("fldTrKategoriAdi") Then Response.Write "color=""#0000FF""" End If %>><%=IlkHarfBuyuk(Replace(Ulkeler("fldTrKategoriAdi"),"Kambocya_",""))%> (<%=FSay(0)%>)
<% Ulkeler.MoveNext Loop %>
<%=DikeyBol%>
<% KayitSayisi = 9 If QueryFilter(Request.QueryString("s")) <> "" Then Sayfa = CInt(QueryFilter(Request.QueryString("s"))) Else Sayfa = 1 End If Set UFoto = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldTrKategoriAdi='" & Ulke & "' AND fldGonderen='' ORDER BY fldID DESC LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi) Set FTop = Bag.Execute("SELECT COUNT(fldID) FROM tblFotograflar WHERE fldTrKategoriAdi='" & Ulke & "' AND fldGonderen=''") TopKayit = FTop(0) If UFoto.EOF Then Set RFoto = Bag.Execute("SELECT DISTINCT(fldTrKategoriAdi), fldGonderen FROM tblFotograflar WHERE fldGonderen='' ORDER BY RAND() DESC") Set UFoto = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldTrKategoriAdi='" & RFoto("fldTrKategoriAdi") & "' AND fldGonderen='' ORDER BY fldID DESC LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi) Set FTop = Bag.Execute("SELECT COUNT(fldID) FROM tblFotograflar WHERE fldTrKategoriAdi='" & UFoto("fldTrKategoriAdi") & "' AND fldGonderen=''") TopKayit = FTop(0) End If %>
<%=UCase(UFoto("fldTrKategoriAdi"))%> ÜLKESİNE AİT SEYAHAT FOTOĞRAFLARI
<% Else %> <% End If %>
<% j=0 Do While Not UFoto.EOF %> <% j=j+1 If j Mod 3 = 0 Then Response.Write "" End If UFoto.MoveNext Loop %> <% If CInt(TopKayit) > CInt(KayitSayisi) Then %> <% End If %>
">&w=175" height="110" style="border:3px double #000000">
','ArkadasinaGonder','width=300,height=400,status=no,left='+((screen.width/2)-150)+',top='+((screen.height/2)-200))">

<% SayfaSayisi = CInt(TopKayit) / CInt(KayitSayisi) If InStr(1,SayfaSayisi,",",1) > 0 Then SayfaSayisi = CInt(Left(SayfaSayisi,InStr(1,SayfaSayisi,",",1))) + 1 If SayfaSayisi > 1 Then Response.Write "Devam: " TopKayit = SayfaSayisi TopSayfa = 10 Onceki = Sayfa - (TopSayfa/2) If Onceki <= 0 Then Onceki = 1 Sonraki = Sayfa + (TopSayfa/2) If Sonraki < TopSayfa Then Sonraki = TopSayfa If Sonraki > TopKayit Then Sonraki = TopKayit If Onceki <> 1 Then Response.Write "<< İlk | " For i=Onceki To Sayfa-1 Response.Write "" & i & " - " Next Response.write "[" & Sayfa & "] " If Sayfa <> TopKayit Then Response.Write "- " For i=Sayfa+1 To Sonraki Response.Write "" & i & " " If i <> Sonraki Then Response.Write "- " Next If Sonraki <> TopKayit Then Response.Write "| Son >> " End If %>
<% Set UFoto = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldID=" & FID) %>
<%=UCase(UFoto("fldTrKategoriAdi"))%> ÜLKESİNE AİT SEYAHAT FOTOĞRAFLARI
&w=550" style="border:1px solid #000000" galleryimg="no"> <% If Request.Cookies("Seyyah")("User") & Session("User") <> "" Then %> <% If B64Decode(Request.Cookies("Seyyah")("User") & Session("User")) = UFoto("fldGonderen") Or AdminKontrol() Then %> <% End If %><% End If %>

<%=UFoto("fldTrAciklama")%>

<% Set Geri = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldID=" & FID + 1) If Geri.EOF Then Response.Write " " Else Response.Write "" End If %>

Bookmark and Share
Ana sayfaya dön ','ArkadasinaGonder','width=300,height=400,status=no,left='+((screen.width/2)-150)+',top='+((screen.height/2)-200))">
<% Set Ileri = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldID=" & FID - 1) If Ileri.EOF Then Response.Write " " Else Response.Write "" End If %>
BU FOTOĞRAFA YAPILAN YORUMLAR

<% Set EYorum = Bag.Execute("SELECT * FROM tblFotoYorumlar WHERE fldFotoID=" & UFoto("fldID") & " AND fldOnay=1 AND fldBolum='normal'") If EYorum.EOF Then %>
BU FOTOĞRAFA HENÜZ YORUM YAPILMAMIŞ, İLK YORUMU YAPAN SİZ OLUN!

<% Else Do While Not EYorum.EOF %>

<%=EYorum("fldTarih")%> tarihinde <%=EYorum("fldYorumlayan")%> yorumlamış... .gif" style="cursor:pointer" onclick="document.getElementById('yorum_<%=EYorum("fldID")%>').style.display = document.getElementById('yorum_<%=EYorum("fldID")%>').style.display=='none' ? 'block' : 'none'; this.src = document.getElementById('yorum_<%=EYorum("fldID")%>').style.display=='none' ? 'images/arti.gif' : 'images/eksi.gif'">
" style="display:<% If QueryFilter(Request.QueryString("yorum")) = 1 Then Response.Write "block" Else Response.Write "none" End If %>; padding:4px;border:1px solid #AAAAAA"><%=Temizle(EYorum("fldYorum"))%>
 
<% EYorum.MoveNext Loop %>

BU YAZIYA SİZ DE YORUM YAPIN!

<% End If %>

<%=Hr%>