[thelist] asp checkboxes help

Brian Delaney brian.delaney at mccmh.net
Thu Nov 11 08:21:55 CST 2004 

Thanks, I will work on this.

Ken Schaefer wrote:

> Brian,
>
> I would use a combination of John's suggestion and Jason's suggestion.
>
> You need, absolutely, to verify the integrity of the data that's coming
> across the wire *before* you put it into an SQL statement, otherwise you run
> the risk of SQL injection.
>
> So, I would use Split() to put the data into an Array. Then test each element
> to ensure that it's a number. You can use Join() to put the data back into a
> string again and place it into an SQL statement if everything's OK.
> Otherwise, if some elements are suspect, you could either abort the entire
> page -or- only use those elements that are valid.
>
> Cheers
> Ken
>
> : -----Original Message-----
> : From: thelist-bounces at lists.evolt.org
> [mailto:thelist-bounces at lists.evolt.org] On
> : Behalf Of Brooking, John
> : Sent: Thursday, 11 November 2004 7:11 AM
> : To: thelist at lists.evolt.org
> : Subject: RE: [thelist] asp checkboxes help
> :
> : Brian asked:
> : > ...
> : > How do I retrieve the multiple checkbox values if there is
> : > more than one service?
> : >
> : > I am using asp, javascript.
> : > any ideas??
> :
> : Brian,
> :
> :    If you need to process them one at a time, you can use the VBScript
> : "Split" function to split the list into an array, then loop through the
> : array. Untested, off the top of my head:
> :
> :    DIM serviceListArray
> :    serviceListArray = Split( request("serviceid"), "," )
> :    For Each serviceItem In serviceListArray
> :       ' Do whatever you want with each item
> :    Next
>
> --
>
> * * Please support the community that supports you.  * *
> http://evolt.org/help_support_evolt/
>
> For unsubscribe and other options, including the Tip Harvester
> and archives of thelist go to: http://lists.evolt.org
> Workers of the Web, evolt !


*
*
*
This message, including any attachments, is intended solely for the use of the named recipient(s) and may contain confidential and/or priveleged information.  Any unauthorized review, use, disclosure or distribution of this communication(s) is expressly prohibited.  If you are not the intended recipient, please contact the sender by reply e-mail and destroy any and all copies of the original message.

More information about the thelist mailing list