Wrox Programmer Forums

Need to download code?

View our list of code downloads.

| FAQ | Members List | Search | Today's Posts | Mark Forums Read
Classic ASP Professional For advanced coder questions in ASP 3. NOT for ASP.NET 1.0, 1.1, or 2.0.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the Classic ASP Professional section of the Wrox Programmer to Programmer discussions. This is a community of tens of thousands of software programmers and website developers including Wrox book authors and readers. As a guest, you can read any forum posting. By joining today you can post your own programming questions, respond to other developers’ questions, and eliminate the ads that are displayed to guests. Registration is fast, simple and absolutely free .
DRM-free e-books 300x50
Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old November 7th, 2008, 10:02 AM
Registered User
Join Date: Nov 2008
Location: goiania, goias, Brazil.
Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via MSN to andregustavo_castro
Default Problems with uploading

Hello personal, I have problems with an uploading system that I am developing.
The logic is the following, I have a form where I register a certain event, and sending an advertising image of that event. The information of the form, are going to the Database and the file for a paste. But no this being accomplished that task, the file not this being created in the paste, and his road no this being safe in the database.
Below they are all my codes, so that they can to verify and to help me with that problem.

' Upload Sem componentes ---------------------------------------
Sub BuildUploadRequest(RequestBin)
on error resume next

PosBeg = 1
PosEnd = InStrB(PosBeg, RequestBin, getByteString(Chr(13)))
boundary = MidB(RequestBin, PosBeg, PosEnd - PosBeg)
BoundaryPos = InStrB(1, RequestBin, boundary)

Do Until (BoundaryPos = InStrB(RequestBin, boundary & getByteString("--")))

Dim UploadControl
Set UploadControl = CreateObject("Scripting.Dictionary")

Pos = InStrB(BoundaryPos, RequestBin, getByteString("Content-Disposition"))
Pos = InStrB(Pos, RequestBin, getByteString("name="))
PosBeg = Pos + 6
PosEnd = InStrB(PosBeg, RequestBin, getByteString(Chr(34)))
Name = getString(MidB(RequestBin, PosBeg, PosEnd - PosBeg))
PosFile = InStrB(BoundaryPos, RequestBin, getByteString("filename="))
PosBound = InStrB(PosEnd, RequestBin, boundary)

If PosFile <> 0 And (PosFile < PosBound) Then
PosBeg = PosFile + 10
PosEnd = InStrB(PosBeg, RequestBin, getByteString(Chr(34)))
FileName = getString(MidB(RequestBin, PosBeg, PosEnd - PosBeg))
UploadControl.Add "FileName", FileName
Pos = InStrB(PosEnd, RequestBin, getByteString("Content-Type:"))
PosBeg = Pos + 14
PosEnd = InStrB(PosBeg, RequestBin, getByteString(Chr(13)))
ContentType = getString(MidB(RequestBin, PosBeg, PosEnd - PosBeg))
UploadControl.Add "ContentType", ContentType
PosBeg = PosEnd + 4
PosEnd = InStrB(PosBeg, RequestBin, boundary) - 2
Value = MidB(RequestBin, PosBeg, PosEnd - PosBeg)
Pos = InStrB(Pos, RequestBin, getByteString(Chr(13)))
PosBeg = Pos + 4
PosEnd = InStrB(PosBeg, RequestBin, boundary) - 2
Value = getString(MidB(RequestBin, PosBeg, PosEnd - PosBeg))
End If

UploadControl.Add "Value", Value
UploadRequest.Add Name, UploadControl
BoundaryPos = InStrB(BoundaryPos + LenB(boundary), RequestBin, boundary)
End Sub

Function getByteString(StringStr)
For i = 1 To Len(StringStr)
Char = Mid(StringStr, i, 1)
getByteString = getByteString & ChrB(AscB(Char))
End Function

Function getString(StringBin)
getString = ""
For intCount = 1 To LenB(StringBin)
getString = getString & Chr(AscB(MidB(StringBin, intCount, 1)))
End Function

' Fim upload sem Componentes -----------------------------------------
Now, the page form
<%@LANGUAGE="VBSCRIPT" codepage="65001" LCID="1046"  %>

<%Session.CodePage = 65001%>

<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Untitled Document</title>
<style type="text/css">
body,td,th {
    font-family: Verdana, Arial, Helvetica, sans-serif;
    font-size: 10px;
    color: #000000;
body {
    margin-left: 0px;
    margin-top: 0px;
    margin-right: 0px;
    margin-bottom: 0px;
    background-color: #FFE94F;
.style1 {
    font-size: 12px;
    font-weight: bold;

<form action="salvaagenda.asp" method="post" enctype="multipart/form-data" name="form1" id="form1">
  <table width="100%" border="0" cellspacing="2" cellpadding="2">
      <td colspan="3"><div align="center" class="style1">Incluir Evento na Agenda </div></td>
      <td colspan="3"><div align="center">Preencha todos os campos</div></td>
      <td width="19%"><div align="right">Img Publicidade: </div></td>
      <td width="80%"><input name="txt_foto1" type="file" id="txt_foto1" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto" size="35" /></td>
      <td width="1%">&nbsp;</td>
      <td><div align="right">Nome do Evento: </div></td>
      <td><input name="nome_evento" type="text" id="nome_evento" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto"  size="35" /></td>
      <td><div align="right">Local:</div></td>
      <td><input name="local" type="text" id="local" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto"  size="35" /></td>
      <td><div align="right">Data:</div></td>
      <td><input name="data1" type="text" id="data1" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto" value="ex.: dd/mm/aaaa"  size="35" /> 
      (essa data aparecera na pagina principal) </td>
      <td><div align="right">Data2:</div></td>
      <td><input name="dia" type="text" id="dia" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto" value="dia"  size="3" /> 
        <input name="mes" type="text" id="mes" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto" value="mes"  size="12" />
      <input name="ano" type="text" id="ano" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto" value="2008"  size="5" />
      (data da pagina agenda.Ex. <strong>01 de Março de 2008</strong>) </td>
      <td><div align="right">Horário:</div></td>
      <td><input name="horario" type="text" id="horario" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto" value="00:00"  size="35" /></td>
      <td><div align="right">Cidade/Estado:</div></td>
      <td><input name="cidade" type="text" id="cidade" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto"  size="16" />
      <select name="TXTEstado" id="TXTEstado" style=" font-size:10px; font-family:Verdana, Arial, Helvetica, sans-serif; size:auto">
        <option value="-1">Selecione</option>
        <option value="AC">AC</option>
        <option value="AL">AL</option>
        <option value="AP">AP</option>
        <option value="AM">AM</option>
        <option value="BA">BA</option>
        <option value="CE">CE</option>
        <option value="DF">DF</option>
        <option value="ES">ES</option>
        <option value="GO" selected="selected">GO</option>
        <option value="MA">MA</option>
        <option value="MT">MT</option>
        <option value="MS">MS</option>
        <option value="MG">MG</option>
        <option value="PA">PA</option>
        <option value="PB">PB</option>
        <option value="PR">PR</option>
        <option value="PE">PE</option>
        <option value="PI">PI</option>
        <option value="RJ">RJ</option>
        <option value="RN">RN</option>
        <option value="RS">RS</option>
        <option value="RO">RO</option>
        <option value="RR">RR</option>
        <option value="SC">SC</option>
        <option value="SP">SP</option>
        <option value="SE">SE</option>
        <option value="TO">TO</option>
      <td valign="top"><div align="right">Descrição da Festa:</div></td>
      <td><textarea name="txtdescri" cols="35" rows="4" wrap="physical" id="txtdescri"></textarea></td>
      <td><div align="right"></div></td>
      <td><input type="submit" name="Submit" value="Incluir" /></td>

<% RESPONSE.Expires=0 %>


Dim nDia, nMes, nAno, nDiaSemana
Dim sDiaSemana, sMes

nDia = day(Date)
nMes = month(Date)
nAno = year(Date)
nDiaSemana = weekday(Date)

select case nDiaSemana
case 1 sDiaSemana = "Domingo"
case 2 sDiaSemana = "Segunda-Feira"
case 3 sDiaSemana = "Terça-Feira"
case 4 sDiaSemana = "Quarta-Feira"
case 5 sDiaSemana = "Quinta-Feira"
case 6 sDiaSemana = "Sexta-Feira"
case 7 sDiaSemana = "S&aacute;bado"
end select

select case nMes
case 1 sMes = "01"
case 2 sMes = "02"
case 3 sMes = "03"
case 4 sMes = "04"
case 5 sMes = "04"
case 6 sMes = "06"
case 7 sMes = "07"
case 8 sMes = "08"
case 9 sMes = "09"
case 10 sMes = "10"
case 11 sMes = "11"
case 12 sMes = "12"
end select

<% session("data2") = nDia & "/" & sMes & "/" & nAno  %>

' Chamando Funções, que fazem o Upload funcionar
byteCount = Request.TotalBytes
RequestBin = Request.BinaryRead(byteCount)
Set UploadRequest = CreateObject("Scripting.Dictionary")
BuildUploadRequest RequestBin

dim byteCount , RequestBin , UploadRequest
' Recuperando os Dados Digitados ----------------------

    varNomeEvento = UploadRequest.Item("nome_evento").Item("Value")
    varLocal = UploadRequest.Item("local").Item("Value")
    varData1 = UploadRequest.Item("data1").Item("Value")
     varDia = UploadRequest.Item("dia").Item("Value")
    varMes = UploadRequest.Item("mes").Item("Value")
    varAno = UploadRequest.Item("ano").Item("Value")
    varHorario = UploadRequest.Item("horario").Item("Value")
    varCidade = UploadRequest.Item("cidade").Item("Value")
    varEstado = UploadRequest.Item("TXTEstado").Item("Value")
    varDescricao = UploadRequest.Item("txtdescri").Item("Value")
    DataCadastro = session("data2")

 ' Tipo de arquivo que esta sendo enviado
tipo_foto1 = UploadRequest.Item("txt_foto1").Item("ContentType")

' Caminho completo dos arquivos enviados
caminho_foto1 = UploadRequest.Item("txt_foto1").Item("FileName")

' Nome dos arquivos enviados
nome_foto1 = Right(caminho_foto1,Len(caminho_foto1)-InstrRev(caminho_foto1,"\"))

' Conteudo binario dos arquivos enviados
foto1 = UploadRequest.Item("txt_foto1").Item("Value")

' pasta onde as imagens serao guardadas
pasta = Server.MapPath("imagens_agenda/")
nome_foto1 = "/"&nome_foto1

' pasta + nome dos arquivos

cfoto1 = "imagens_agenda" + nome_foto1

' Fazendo o Upload do arquivo selecionado

if foto1 <> "" then
Set ScriptObject = Server.CreateObject("Scripting.FileSystemObject")
Set MyFile = ScriptObject.CreateTextFile(pasta & nome_foto1)
For i = 1 to LenB(foto1)
MyFile.Write chrB(AscB(MidB(foto1,i,1)))
end if

' Conecta-se ao Banco de Dados
call abreconexao

function LimparTexto(str)
str = trim(str)
str = lcase(str)
str = replace(str,"=","")
str = replace(str,"'","")
str = replace(str,"""""","")
str = replace(str," or ","")
str = replace(str," and ","")
str = replace(str,"(","")
str = replace(str,")","")
str = replace(str,"<","[")
str = replace(str,">","]")
str = replace(str,"update","")
str = replace(str,"-shutdown","")
str = replace(str,"--","")
str = replace(str,"'","")
str = replace(str,"#","")
str = replace(str,"$","")
str = replace(str,"%","")
str = replace(str,"¨","")
str = replace(str,"&","")
str = replace(str,"'or'1'='1'","")
str = replace(str,"--","")
str = replace(str,"insert","")
str = replace(str,"drop","")
str = replace(str,"delet","")
str = replace(str,"xp_","")
str = replace(str,"select","")
str = replace(str,"*","")
LimparTexto = str
end function

CALL LimparTexto(varNomeEvento)
CALL LimparTexto(varLocal)
CALL LimparTexto(varData1)
CALL LimparTexto(varDia)
CALL LimparTexto(varMes)
CALL LimparTexto(varAno)
CALL LimparTexto(varHorario)
CALL LimparTexto(varCidade)
CALL LimparTexto(varEstado)
CALL LimparTexto(varDescricao)

' cadastra os dados no banco de dados
sql = " Insert into agenda ( Foto, NomeFesta , Local , MiniData , DiaFesta , MesFesta , AnoFesta , Horario , Cidade , Estado , Descricao , Data) values ( '"&cfoto&"', '"&varNomeEvento&"', '"&varLocal&"', '"&varData1&"', '"&varDia&"', '"&varMes&"', '"&varAno&"', '"&varHorario&"', '"&varCidade&"', '"&varEstado&"', '"&varDescricao&"', '"&DataCadastro&"')"

SET rsSQL = ConexaoDB.Execute(sql)


Reply With Quote

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
File Uploading Script Problems mercury7 BOOK: Beginning PHP4/PHP 5 ISBN: 978-0-7645-4364-7; v5 ISBN: 978-0-7645-5783-5 13 January 8th, 2009 09:13 AM
Problems uploading on dreamweaver CS3!!!! omgdesigns.com Dreamweaver (all versions) 2 May 29th, 2008 05:20 AM
Uploading Rebel BOOK: ASP.NET 2.0 Instant Results ISBN: 978-0-471-74951-6 1 November 22nd, 2007 07:18 AM
Uploading Rebel BOOK: ASP.NET 2.0 Instant Results ISBN: 978-0-471-74951-6 1 November 14th, 2007 06:13 AM
Help in uploading sonurijs Pro JSP 3 March 5th, 2005 04:54 PM

All times are GMT -4. The time now is 01:23 AM.

Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
© 2013 John Wiley & Sons, Inc.