%
Function QueryFilter(Str)
Str = Replace(Str, "*", "[INJ]",1,-1,1)
Str = Replace(Str, "=", "[INJ]",1,-1,1)
Str = Replace(Str, "<", "[INJ]",1,-1,1)
Str = Replace(Str, ">", "[INJ]",1,-1,1)
Str = Replace(Str, ";", "[INJ]",1,-1,1)
Str = Replace(Str, "(", "[INJ]",1,-1,1)
Str = Replace(Str, ")", "[INJ]",1,-1,1)
Str = Replace(Str, "+", "[INJ]",1,-1,1)
Str = Replace(Str, "#", "[INJ]",1,-1,1)
Str = Replace(Str, "'", "[INJ]", 1, -1, 1)
Str = Replace(Str, "&", "[INJ]", 1, -1, 1)
Str = Replace(Str, "%", "[INJ]", 1, -1, 1)
Str = Replace(Str, "?", "[INJ]", 1, -1, 1)
Str = Replace(Str, "´", "[INJ]", 1, -1, 1)
Str = Replace(Str, ",", "[INJ]",1,-1,1)
Str = Replace(Str, "UNION", "[INJ]",1,-1,1)
Str = Replace(Str, "SELECT", "[INJ]",1,-1,1)
Str = Replace(Str, "WHERE", "[INJ]",1,-1,1)
Str = Replace(Str, "LIKE", "[INJ]",1,-1,1)
Str = Replace(Str, "FROM", "[INJ]",1,-1,1)
Str = Replace(Str, "UPDATE", "[INJ]",1,-1,1)
Str = Replace(Str, "INSERT", "[INJ]",1,-1,1)
Str = Replace(Str, "ORDER", "[INJ]",1,-1,1)
Str = Replace(Str, "GROUP", "[INJ]",1,-1,1)
Str = Replace(Str, "ALTER", "[INJ]",1,-1,1)
Str = Replace(Str, "ADD", "[INJ]",1,-1,1)
Str = Replace(Str, "MODIFY", "[INJ]",1,-1,1)
Str = Replace(Str, "RENAME", "[INJ]",1,-1,1)
Str = Replace(Str, Chr(39), "[INJ]", 1, -1, 1)
If InStr(1,Str,"[INJ]",1) then
Response.Redirect "Default.asp"
end if
QueryFilter = Str
End Function
%>
<%
'On Error Resume Next
ID = Temizle(QueryFilter(Request.QueryString("id")))
UBilgi = False
Function Tk(m)
m = Replace(m,"ı","i")
m = Replace(m,"ü","u")
m = Replace(m,"ş","s")
m = Replace(m,"ç","c")
m = Replace(m,"ö","o")
m = Replace(m,"ğ","g")
m = Replace(m,"İ","i")
m = Replace(m,"Ü","u")
m = Replace(m,"Ş","s")
m = Replace(m,"Ç","c")
m = Replace(m,"Ö","o")
m = Replace(m,"Ğ","g")
m = Replace(m," ","")
Tk=Trim(m)
End Function
%>
ÜLKE YAZILARI
<% If ID = "" Then %>
Başlık
İstatistik
<%
KayitSayisi = 7
UlkeAdi = Temizle(QueryFilter(Request.QueryString("ulke")))
If QueryFilter(Request.QueryString("s")) <> "" Then
Sayfa = CInt(QueryFilter(Request.QueryString("s")))
Else
Sayfa = 1
End If
If UlkeAdi = "" Then
Set Ulke = Bag.Execute("SELECT * FROM tblUlkeYazilari WHERE fldDurum=1 ORDER BY fldID DESC LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi)
Set SQLTop = Bag.Execute("SELECT COUNT(*) FROM tblUlkeYazilari Where fldDurum=1")
TopKayit = SQLTop(0)
Else
Set Ulke = Bag.Execute("SELECT * FROM tblUlkeYazilari WHERE fldDurum=1 AND fldKategori='" & B64Decode(UlkeAdi) & "' ORDER BY fldID DESC LIMIT " & (KayitSayisi*Sayfa)-(KayitSayisi) & "," & KayitSayisi)
Set SQLTop = Bag.Execute("SELECT COUNT(*) FROM tblUlkeYazilari Where fldDurum=1 AND fldKategori='" & B64Decode(UlkeAdi) & "'")
TopKayit = SQLTop(0)
End If
j=0
Do While Not Ulke.EOF
If j Mod 2 = 0 Then
Bg = "#FFFFFF"
Else
Bg = "#EEEEEE"
End If
Set EYorum = Bag.Execute("SELECT COUNT(*) FROM tblYorumlar WHERE fldBolum='Ulkeler' AND fldYaziID=" & Ulke("fldID"))
On Error Resume Next
Set Yazan = Bag.Execute("SELECT fldAdiSoyadi, fldKullaniciAdi FROM tblUyeler WHERE fldID=" & Ulke("fldSeyyahID"))
%>
<%
If CInt(TopKayit) > CInt(KayitSayisi) Then
SayfaSayisi = CInt(TopKayit) / CInt(KayitSayisi)
If InStr(1,SayfaSayisi,",",1) > 0 Then SayfaSayisi = CInt(Left(SayfaSayisi,InStr(1,SayfaSayisi,",",1))) + 1
If SayfaSayisi > 1 Then
Response.Write "Arşiv: "
TopKayit = SayfaSayisi
TopSayfa = 10
Onceki = Sayfa - (TopSayfa/2)
If Onceki <= 0 Then Onceki = 1
Sonraki = Sayfa + (TopSayfa/2)
If Sonraki < TopSayfa Then Sonraki = TopSayfa
If Sonraki > TopKayit Then Sonraki = TopKayit
If Onceki <> 1 Then Response.Write "<< İlk | "
For i=Onceki To Sayfa-1
Response.Write "" & i & " - "
Next
Response.write "[" & Sayfa & "] "
If Sayfa <> TopKayit Then Response.Write "- "
For i=Sayfa+1 To Sonraki
Response.Write "" & i & " "
If i <> Sonraki Then Response.Write "- "
Next
If Sonraki <> TopKayit Then Response.Write "| Son (" & TopKayit & ") >> "
End If
End If
%>
<% End If %>
<%
Else
Set Yazi = Bag.Execute("SELECT * FROM tblUlkeYazilari WHERE fldDurum=1 AND fldID=" & ID)
If Not Yazi.EOF Then
Set EYorum = Bag.Execute("SELECT COUNT(*) FROM tblYorumlar WHERE fldBolum='Ulkeler' AND fldYaziID=" & Yazi("fldID"))
'Yazının hitini arttır
Set HitArtir = Bag.Execute("UPDATE tblUlkeYazilari SET fldHit=fldHit+1 WHERE fldID=" & ID)
On Error Resume Next
Set Yazan = Bag.Execute("SELECT fldAdiSoyadi, fldKullaniciAdi FROM tblUyeler WHERE fldID=" & Yazi("fldSeyyahID"))
%>
" style="display:<% If QueryFilter(Request.QueryString("yorum")) = 1 Then Response.Write "block" Else Response.Write "none" End If %>; padding:4px;border:1px solid #AAAAAA"><%=Temizle(EYorum("fldYorum"))%>
<%
If IsObject(Yazi) Then
If Not Yazi.EOF Then
Set UlkeBilgileri = Bag.Execute("SELECT * FROM tblUlkeBilgileri WHERE fldUlkeAdiKisa='" & Yazi("fldKategori") & "'")
If Not UlkeBilgileri.EOF Then
UBilgi = True
%>
<%
Set Mars = Bag.Execute("SELECT * FROM tblMilliMarslar WHERE fldUlke='" & UlkeBilgileri("fldUlkeAdiKisa") & "'")
If Not Mars.EOF Then
%>
Milli Marşı:
<%
Set Ulke = Bag.Execute("SELECT DISTINCT(fldKategori) FROM tblUlkeYazilari WHERE fldDurum=1 ORDER BY fldKategori ASC")
If Not Ulke.EOF Then
Do While Not Ulke.EOF
Set YaziSayisi = Bag.Execute("SELECT COUNT(fldID) FROM tblUlkeYazilari WHERE fldKategori='" & Ulke("fldKategori") & "'")
Response.Write "
<%
Else
End If
End If
End If
Sub Deneme()
UBilgi = False
%>
ÜLKELERE AİT TOPLAM YAZILAR
<%
SQL = "SELECT fldKategori, COUNT(fldKategori) AS toplam FROM tblUlkeYazilari GROUP BY fldKategori ORDER BY toplam DESC"
Set Rs = Bag.Execute(SQL)
j=1
Do While Not RS.EOF
%>
<%
If IsObject(Yazi) Then
If Not Yazi.EOF Then
Set UFoto = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldTrKategoriAdi='" & Yazi("fldKategori") & "' ORDER BY RAND() LIMIT 4")
If Not UFoto.EOF Then
%>
<%
End Sub
If Not IsObject(UlkeBilgileri) Then
Deneme
ElseIf UlkeBilgileri.EOF Then
Deneme
End If
%>
<% If UBilgi Then %>
<%=Hr%>
EN ÇOK OKUNAN ÜLKE YAZILARI
<%
Set EnCokOkunan = Bag.Execute("SELECT * FROM tblUlkeYazilari WHERE fldDurum=1 ORDER BY fldHit DESC LIMIT 10")
j=1
Do While Not EnCokOkunan.EOF
%>
<%=j%>-)" style="color:#FF6600"><%=IlkHarfBuyuk(EnCokOkunan("fldBaslik"))%> (<%=EnCokOkunan("fldHit")%> Kere)
<%
j=j+1: EnCokOkunan.MoveNext
Loop
%>
<%=DikeyBol%>
<%
Set UFoto = Bag.Execute("SELECT * FROM tblFotograflar WHERE fldTrKategoriAdi='" & Yazi("fldKategori") & "' ORDER BY RAND() LIMIT 4")
If Not UFoto.EOF Then
%>
<%
Set EnCokPuan = Bag.Execute("SELECT * FROM tblUlkeYazilari WHERE fldDurum=1 ORDER BY fldPuan DESC LIMIT 10")
j=1
Do While Not EnCokPuan.EOF
%>
<%=j%>-)" style="color:#FF6600"><%=IlkHarfBuyuk(EnCokPuan("fldBaslik"))%> (<%=EnCokPuan("fldPuan")%>)
<%
j=j+1: EnCokPuan.MoveNext
Loop
%>