dcsimg
Login | Register   
RSS Feed
Download our iPhone app
TODAY'S HEADLINES  |   ARTICLE ARCHIVE  |   FORUMS  |   TIP BANK
Browse DevX
Sign up for e-mail newsletters from DevX

By submitting your information, you agree that devx.com may send you DevX offers via email, phone and text message, as well as email offers about other products and services that DevX believes may be of interest to you. DevX will process your information in accordance with the Quinstreet Privacy Policy.


Tip of the Day
Language: Active Server Pages (ASP)
Expertise: Beginner
Mar 18, 1997

WEBINAR:

On-Demand

Application Security Testing: An Integral Part of DevOps


VBScript "Replace" Function

Question:
I am using Microsoft's Active Server Pages for a web application I am working on. In the application I must take user input (via an html form) and insert and update records in an Access (soon-to-be SQL Server) table. The problem is that if a user's input contains a ' then the sql string used to insert the record into the database blows up. I have tried using the VBScript Replace function to search for all ' marks and remove them, but it does not work. Is there any other way to remove these single quote marks?

Answer:
You have a couple of options here. First of all, if you put two single quotes together, you can store the character in the database and put it through your SQL statement.

If you don't want to allow single quotes at all, you can perform the Replace yourself with this code:

Dim i
Dim sNewString
For i = 1 to Len(MyString)
   If Mid(MyString, i, 1) <> "'" Then
      sNewString = sNewString & Mid(MyString, i, 1)
   End If
Next i
The variable "sNewString" will contain the string without any single quotes in it.
DevX Pro
 
Comment and Contribute

 

 

 

 

 


(Maximum characters: 1200). You have 1200 characters left.

 

 

Sitemap
×
We have made updates to our Privacy Policy to reflect the implementation of the General Data Protection Regulation.
Thanks for your registration, follow us on our social networks to keep up-to-date