<script language="JavaScript"> <!-- //在后台读取记录集生成的XML function cseChange(oRid) { var oXMLDoc = new ActiveXObject('MSXML'); sURL = "couseList.asp?CouseId=" +oRid.value; oXMLDoc.URL = sURL; var oRoot=oXMLDoc.root; var coll = document.all.tags("input"); if (coll!=null) var i=0; for (var j=0;j<coll.length;j++) { if(coll[j].type=="text") { if(coll[j].name.substr(0,7)=="txtYear") { if(oRoot.children != null) { for(i;i<=oRoot.children.length;++i) { oItem= oRoot.children.item("subject",0); if(coll[j].name.substr(0,7)=="txtYear") { coll[j].value=oItem.children.item(i).text; j++; } } } } } } }
--> </script>
couseList.asp代码 ------------------------------ <?xml version="1.0" encoding="gb2312" ?> <% intCouseId=request.querystring("CouseId") if intCouseId<>"" then dim Conn,Rs,strSQL,connstr dim dbUser,dbPwd,dbDsn If Request.Cookies("dblink").Haskeys then dbUser=Request.Cookies("dblink")("dbUser") dbPwd=Request.Cookies("dblink")("dbPwd") dbDsn=Request.Cookies("dblink")("dbDsn") else dbUser="dlmis" dbPwd="dlmis" dbDsn="Oracle" end if
connstr="Provider=MSDAORA.1;Password="&dbPwd&";User ID="&dbUser&";Data Source="&dbDsn&";Persist Security Info=True" set conn=server.createobject("ADODB.CONNECTION") conn.open connstr set rs=server.createobject("adodb.recordset") strSQL="select stime,etime from tbl_class where classid="&intCouseId Rs.Open strSQL,Conn,3,1 end if %> <subjects> <% do while not Rs.eof %> <subject> <couseName><%=formatdatetime(Rs("stime"),1)%></couseName> <classId><%=formatdatetime(Rs("etime"),1)%></classId> </subject> <% Rs.movenext loop %> </subjects> ---------------------------------------------------------------
<script language="JavaScript">
<!--
//在后台读取记录集生成的XML
function cseChange(oRid)
{
var oXMLDoc = new ActiveXObject('MSXML');
sURL = "couseList.asp?CouseId=" +oRid.value;
oXMLDoc.URL = sURL;
var oRoot=oXMLDoc.root;
var coll = document.all.tags("input");
if (coll!=null)
var i=0;
for (var j=0;j<coll.length;j++)
{
if(coll[j].type=="text")
{
if(coll[j].name.substr(0,7)=="txtYear")
{
if(oRoot.children != null)
{
for(i;i<=oRoot.children.length;++i)
{
oItem= oRoot.children.item("subject",0);
if(coll[j].name.substr(0,7)=="txtYear")
{
coll[j].value=oItem.children.item(i).text;
j++;
}
}
}
}
}
}
}
-->
</script>
couseList.asp代码
------------------------------
<?xml version="1.0" encoding="gb2312" ?>
<% intCouseId=request.querystring("CouseId")
if intCouseId<>"" then
dim Conn,Rs,strSQL,connstr
dim dbUser,dbPwd,dbDsn
If Request.Cookies("dblink").Haskeys then
dbUser=Request.Cookies("dblink")("dbUser")
dbPwd=Request.Cookies("dblink")("dbPwd")
dbDsn=Request.Cookies("dblink")("dbDsn")
else
dbUser="dlmis"
dbPwd="dlmis"
dbDsn="Oracle"
end if
connstr="Provider=MSDAORA.1;Password="&dbPwd&";User ID="&dbUser&";Data Source="&dbDsn&";Persist Security Info=True"
set conn=server.createobject("ADODB.CONNECTION")
conn.open connstr
set rs=server.createobject("adodb.recordset")
strSQL="select stime,etime from tbl_class where classid="&intCouseId
Rs.Open strSQL,Conn,3,1
end if
%>
<subjects>
<% do while not Rs.eof %>
<subject>
<couseName><%=formatdatetime(Rs("stime"),1)%></couseName>
<classId><%=formatdatetime(Rs("etime"),1)%></classId>
</subject>
<% Rs.movenext
loop %>
</subjects>
---------------------------------------------------------------
首先ie在默认安全配置下好像在客户端可以调用msxml3.dll
---------------------------------------------------------------
这是可以肯定的