<% '@CODEPAGE="65001" language="vbscript" 'Option Explicit 'session.CodePage = "65001" 'Response.CharSet = "utf-8" 'Response.buffer=true 'Response.Expires = 0 %> <% dim str,val ' ÇØÇÇÁ¤´åÄÄ Ãß°¡ 2008-05-27 function sqlCheck(str) val=UCASE(str) if instr(val, ";") <> 0 Or _ instr(val, "'") <> 0 Or _ instr(val, "--") <> 0 Or _ instr(val, "/*") <> 0 Or _ instr(val, "*/") <> 0 Or _ instr(val, "XP_") <> 0 Or _ instr(val, "DECLARE") <> 0 Or _ instr(val, "SELECT") <> 0 Or _ instr(val, "UPDATE") <> 0 Or _ instr(val, "DELETE") <> 0 Or _ instr(val, "INSERT") <> 0 Or _ instr(val, "SHUTDOWN") <> 0 Or _ instr(val, "DROP") <> 0 then ' response.write "¿À·ù¹ß»ý" response.Write("") response.End Else sqlCheck=str end if end function 'Dim idx : idx=sqlCheck(request("idx")) Dim NewGetTable , GetSeq, GetBD_SELECT Dim GetPage, GetSearchPart, GetSearchStr NewGetTable = "mechanicalboard" GetSeq = sqlCheck(request("seq")) GetPage = sqlCheck(request("page")) GetSearchPart = sqlCheck(request("SearchPart")) GetSearchStr = sqlCheck(request("SearchStr")) '³»¿ë Ãâ·Â Sql = "select BD_SEQ, BD_THREAD , BD_DEPTH , BD_NAME, BD_EMAIL ,BD_SUBJECT, BD_CONTENT, BD_DAY , BD_JAL ,BD_URL , BD_INPUTDATE, BD_IP, BD_READCOUNT ,BD_STATE from " Sql = Sql & NewGetTable & " where BD_seq = " & GetSeq Set Rs = Con.Execute(Sql) Dim GetBD_SEQ : GetBD_SEQ = Rs(0) Dim GetBD_THREAD : GetBD_THREAD = Rs(1) Dim GetBD_DEPTH : GetBD_DEPTH = Rs(2) Dim GetBD_NAME : GetBD_NAME = Rs(3) Dim GetBD_EMAIL : GetBD_EMAIL = Rs(4) Dim GetBD_SUBJECT : GetBD_SUBJECT = Rs(5) Dim GetBD_CONTENT : GetBD_CONTENT = Rs(6) Dim GetBD_DAY : GetBD_DAY = Rs(7) Dim GetBD_JAL : GetBD_JAL = Rs(8) Dim GetBD_URL : GetBD_URL = Rs(9) Dim GetBD_BD_INPUTDATE: GetBD_BD_INPUTDATE = Rs(10) Dim GetBD_BD_IP : GetBD_BD_IP = Rs(11) GetBD_BD_IP = left(GetBD_BD_IP,10) & "..." Dim GetBD_READCOUNT : GetBD_READCOUNT = Rs(12) Dim GetBS_STATE : GetBS_STATE = Rs(13) Rs.close 'ÆÄÀÏ Á¤º¸ Ãâ·Â Sql = "select FILE_SEQ , FILE_BD_SEQ, FILE_BD_TABLE , FILE_NAME , FILE_SIZE from "& NewGetTable &"_pds" Sql = Sql & " where FILE_BD_SEQ = " & GetBD_SEQ & " and FILE_BD_TABLE = '" & NewGetTable & "'" Set Rs = Con.Execute(Sql) Dim GetFILE_NAME , GetFILE_SIZE , GetFileImage if not (Rs.BOF or Rs.EOF) then GetFILE_NAME = ""&Rs(3) GetFILE_SIZE = Rs(4) GetFileImage = "" Else GetFILE_NAME = " ÆÄÀÏÀÌ ¾ø½À´Ï´Ù!" GetFILE_SIZE = " no" GetFileImage = " " end if Rs.close Sql = "update " & NewGetTable & " set BD_READCOUNT = BD_READCOUNT + 1 where BD_SEQ = " & GetSeq Con.Execute(Sql) %> <%=hp_title%> > PLM Information > PLM ´º½º
ÇöÀçÀ§Ä¡ : HOME >PLM Information >PLM ´º½º
 
Á¦¸ñ : [<%= GetBD_SELECT %>] <%= GetBD_SUBJECT %>
³¯Â¥ : <%= GetBD_BD_INPUTDATE %> Á¶È¸ : <%= GetBD_READCOUNT %>
<%= GetBD_CONTENT %>
ÀÚ·áÁ¦°ø <%= GetBD_JAL %> URL <%= GetBD_URL %>
ÀÛ¼ºÀÚ <%= GetBD_NAME %> ¸ÞÀÏ <%= GetBD_EMAIL %>
Ãâó <%= GetBD_DAY %> ÷ºÎÆÄÀÏ <%= GetFILE_NAME %> (<%= GetFILE_SIZE %> KByte)
<%if session("admin") = "administrator" then%> <% end if%> <%if session("admin") = "administrator" then%> <% end if%>