UC知道哪位高手帮我看一下这段ASP代码哪里错了?
来源:百度知道 编辑:UC知道 时间:2024/05/23 00:23:12
这是一段"登陆"代码,分两种方式可以登陆,一种是按编号:MemberID,另一种方式是按昵称:Nike,帮我看一下哪里错了.谢谢!!
Set rs = Server.CreateObject("ADODB.Recordset")
Select case Request.form("fs")
case "nick"
sql = "select * from user_manage where Nick = '"&Request.form("text")&"' and password = '"&md5(Request.form("password"), 32)&"'"
case "MemberID"
sql = "select * from user_manage where MemberID = '"&Request.form("text")&"' and password = '"&md5(Request.form("password"), 32)&"'"
end Select
rs.open sql, Conn, 2, 2
Set rs = Server.CreateObject("ADODB.Recordset")
Select case Request.form("fs")
case "nick"
sql = "select * from user_manage where Nick = '"&Request.form("text")&"' and password = '"&md5(Request.form("password"), 32)&"'"
case "MemberID"
sql = "select * from user_manage where MemberID = '"&Request.form("text")&"' and password = '"&md5(Request.form("password"), 32)&"'"
end Select
rs.open sql, Conn, 2, 2
错误提示是怎么样的?
MemberID 会不会是数字?
sql = "select * from user_manage where MemberID = '"&Request.form("text")&"' and password = '"&md5(Request.form("password"), 32)&"'"
改成:
sql = "select * from user_manage where MemberID = "&cint(Request.form("text"))&" and password = '"&md5(Request.form("password"), 32)&"'"
试下.
RS.OPEN SQL,CONN,1,1 只读
RS.OPEN SQL,CONN,1,3 修改