<% page=Trim(request("page")) If page="" Then page=1 Elseif CInt(page)<=0 then page=1 else page=CInt(page) End If RICHid=Request.Querystring("id") If RICHid ="" then Response.Write("") end if if instr(RICHid,"'") or instr(RICHid,"select") or instr(RICHid,"in") or instr(RICHid,"from") or instr(RICHid,"len") or instr(RICHid,"where") or instr(RICHid,"or") or instr(RICHid,"and") then Response.Write("") Response.End end if id=trim(request("id")) sql="select * from product where id=" & id & "" Set rs= Server.CreateObject("ADODB.Recordset") rs.open sql,conn,1,1 if rs.bof and rs.eof then response.write"" else protitle=rs("title") probigclassname=rs("bigclassname") prosmallclassname=rs("smallclassname") end if rs.close set rs=nothing if prosmallclassname<>"" and probigclassname<>"" then proclasslx=prosmallclassname&"-"&probigclassname elseif probigclassname<>"" then proclasslx=probigclassname else proclasslx="产品中心" end if strFileName="ProductView.Asp?id="&id %> <%=protitle%>-<%=proclasslx%>-<%=indexcompanyname%>
<% DIM DLMCnew,AK response.Write("") set rs=server.CreateObject("adodb.recordset") sql="select * from bigclass order by bigclassnamepass asc" rs.open sql,conn,1,1 if rs.eof and rs.bof then else IF request.QueryString("kai") = "K" then AK="g" else AK = "K" end if do while not rs.eof DLMCnew=rs("BigClassName") response.Write("") IF Cint(BigClassID)=rs("BigClassID") And request.QueryString("kai") = "K" THEN set rssmall=server.CreateObject("adodb.recordset") sql="select * from smallclass where bigclassname='"&rs("bigclassname")&"' order by smallclassnamepass asc" rssmall.open sql,conn,1,1 if rssmall.bof and rssmall.eof then else do while not rssmall.eof response.Write("") set rsssmall=server.CreateObject("adodb.recordset") sql="select * from ssmallclass where bigclassname='"&rs("bigclassname")&"' and smallclassname='"&rssmall("smallclassname")&"' order by sSmallClassNamepass asc" rsssmall.open sql,conn,1,1 if rsssmall.bof and rsssmall.eof then else do while not rsssmall.eof response.Write("") rsssmall.movenext loop rsssmall.close set rsssmall=nothing end if rssmall.movenext loop rssmall.close set rssmall=nothing end if ELSE END IF rs.movenext loop rs.close set rs=nothing end if response.Write("
"&rs("bigclassname")&"
 - "&rssmall("smallclassname")&"
     - "&rsssmall("ssmallclassname")&"
")%>
    ABOUT 产品中心
       您现在的位置:首页 > 产品中心
 
<% ShowSmallClassType=ShowSmallClassType_Article dim id RICHid=Request.Querystring("id") '把变量转换为小写 为了防止用大写注入 richid=lcase(richid) If RICHid ="" then Response.Write("") end if if instr(RICHid,"'") or instr(RICHid,"select") or instr(RICHid,"in") or instr(RICHid,"from") or instr(RICHid,"len") or instr(RICHid,"where") or instr(RICHid,"or") or instr(RICHid,"and") then Response.Write("") Response.End end if '在这里过滤TMD的不良字符 id=trim(request("id")) sql="select * from Product where id=" & id & "" Set rs= Server.CreateObject("ADODB.Recordset") rs.open sql,conn,1,3 if rs.bof and rs.eof then response.write"" else rs("Hits")=rs("Hits")+1 rs.update if rs("hits")>=HitsOfHot then rs("Hot")=True rs.update end if BigClassName=rs("BigClassName") SmallClassName=rs("SmallClassName") ProDefaultPicUrl=rs("DefaultPicUrl") content=rs("content") paging=rs("PageType") %> <% response.write "| " & rs("BigClassName") & " >> " if rs("SmallClassName") & ""<>"" then response.write "" & rs("SmallClassName") & " >> " end if response.write rs("Title") %>
<%= rs("title") %> 

<% IMGPath=ProDefaultPicUrl Set PP = New ImgWHInfo Wide = PP.imgW(Server.Mappath(IMGPath)) Set pp = Nothing if Wide>300 then Response.Write("") else Response.Write("") end if %>
<%call PageType(strFileName,paging)%>
点击:<%=rs("Hits")%>  录入时间:<%= FormatDateTime(rs("UpdateTime"),2) %>  <% end if rs.close set rs=nothing call CloseConn() %>