我初学,请问哪位能帮我帮我写段用ASP写的用户注册,登录,管理的源码(数据库用的是Access),或有免费下地的网址?我下载也可,谢谢帮助!!!
------解决方案--------------------
可以看一下XproerCMS:http://www.cnblogs.com/xproer/archive/2012/02/09/2343945.html,使用ASP开发,布署简单,二次开发容易。
此CMS完全开源,代码质量比较高,使用了三层构架设计,代码有详细的注释,便于学习和二次开发。
安全方面,XproerCMS使用ADO参数化查询技术,有效的解决了SQL注入漏洞的问题。
示例代码:
- VB code
'添加到数据库,新建一条数据
Public Function Insert()
Dim sql : sql = "insert into xdb_news(CateID,NewsTitle,NewsContent,NewsColor,NewsStyle,NewsAuthor,NewsFrom,NewsPicture,IsTop,IsRecommend,HasPicture) values(@CateID,@NewsTitle,@NewsContent,@NewsColor,@NewsStyle,@NewsAuthor,@NewsFrom,@NewsPicture,@IsTop,@IsRecommend,@HasPicture)"
Dim param
Set param = New DbParam
param.AddIntParam "@CateID",m_CateID
param.AddTextParam "@NewsTitle",m_NewsTitle,50
param.AddMemoParam "@NewsContent",m_NewsContent
param.AddTextParam "@NewsColor",m_NewsColor,7
param.AddTextParam "@NewsStyle",m_NewsStyle,10
param.AddTextParam "@NewsAuthor",m_NewsAuthor,20
param.AddTextParam "@NewsFrom",m_NewsFrom,50
param.AddTextParam "@NewsPicture",m_NewsPicture,255
param.AddIntParam "@IsTop",m_IsTop
param.AddIntParam "@IsRecommend",m_IsRecommend
param.AddIntParam "@HasPicture",m_HasPicture
Dim db
Set db = New DbHelper
db.ExecuteNonQuery sql,param
Set db = Nothing
Set param = Nothing
End Function