var xmlHttp; function CreateXmlHttp() { try{xmlHttp=new ActiveXObject("Msxml2.XMLHTTP");} catch(e){try{xmlHttp=new ActiveXObject("Microsoft.XMLHTTP");} catch(e){try{xmlHttp=new XMLHttpRequest();} catch(e){xmlHttp=false;}}} } ///xmlHttp处理 function AjaxProcesss(url,id) { CreateXmlHttp(); xmlHttp.open("POST",url); xmlHttp.onreadystatechange=function() { if(xmlHttp.readyState==4) { id.innerHTML=xmlHttp.responseText; } } xmlHttp.send(null); } function AjaxProcessCity(url,id) { CreateXmlHttp(); xmlHttp.open("POST",url); xmlHttp.onreadystatechange=function() { if(xmlHttp.readyState==4) { id.innerHTML=xmlHttp.responseText; ChangeCounty(); } } xmlHttp.send(null); } ///xmlHttp处理 function AjaxProcess2(url,id) { CreateXmlHttp(); xmlHttp.open("POST",url); xmlHttp.onreadystatechange=function() { if(xmlHttp.readyState==4) { id.innerHTML=xmlHttp.responseText; Hospitallist(1); } } xmlHttp.send(null); } function InitCity(provinceId,temp) { id=$("divCity"); var url="../UserControl/AddressProcess.aspx?action=city&itype="+provinceId; if(IsAddress(url)){return;}//防sql注入 if(temp=="") AjaxProcesss(url,id); else AjaxProcess2(url,id); } function ChangeCity() { var id=$("divCounty"); var url="../UserControl/AddressProcess.aspx?action=county&itype="+$("ddlCity").value; if(IsAddress(url)){return;}//防sql注入 AjaxProcessCity(url,id); } function ChangeCounty() { var id=$("divVillage"); var url="../UserControl/AddressProcess.aspx?action=village&itype="+$("ddlCounty").value; if(IsAddress(url)){return;}//防sql注入 AjaxProcesss(url,id); } function ltrim(s){ return s.replace( /^\s*/, ""); }//去左空格; function rtrim(s){ return s.replace( /\s*$/, ""); }//去右空格; function trim(s){ return rtrim(ltrim(s)); }//去左右空格; //------------sql防注入 function IsAddress(oField) { oField=unescape(oField); re=/;|#|([\s\b+()]*select|update|insert|delete|declare|@|exec|dbcc|alter|drop|create|backup|if|else|end|and|or|add|set|open|close|use|begin|return|as|go|exists)[\s\b+]/i; var e = re.test(oField); if(e) { location.href="../bug.aspx";//请更换提示页 return true; }else { return false; } }