gusucode.com > ASP+ACCESS在线手机销售系统(论文+源代码+答辩PPT) > ASP+ACCESS在线手机销售系统(论文+源代码+答辩PPT)\9)ASP 在线手机销售系统\HandsetPro\handset\admin\proRecommend.asp
<!-- #include file = "include/sysbase.asp" --> <% dim strSQL dim nID nID = RealString(Request.QueryString("id")) '如果参数非法,防止传入类似 manuDel.asp?id=3 or 1=1 if not IsNumeric(nID) then Response.Write "<script language = Javascript>" Response.Write "alert('您输入的数据不合法!');" Response.Write "window.history.go(-1);" Response.Write "</script>" Response.End end if '组织SQL语句 strSQL = "UPDATE Product SET Recommend = (1-Recommend), " strSQL = strSQL + "RecommendDate ='"& Now() &"' WHERE id = "& nID '执行SQL语句 conn.execute (strSQL) CloseConn() %> <script language = Javascript> <!-- window.location = "<%=Session("adminOldUrl")%>" --> </script>