<% Set conn = Server.CreateObject ("ADODB.Connection") conn.ConnectionString = "Provider=Microsoft.Jet.OLEDB.4.0;" & _ "Data Source=" & Server.MapPath("bbg/bbg.mdb") conn.Open Function valid_sql(s) For i = 1 To Len(s) If Mid(s, i, 1) = "'" or Mid(s, i, 1) = "*" or Mid(s, i, 1) = "%" Then temp = temp + "" else temp = temp + Mid(s, i, 1) end if Next valid_sql=trim(temp) End Function function sql_filter(str) str = trim(str) if str = "" then exit function str = replace(str,"<","<",1,-1,1) str = replace(str,">",">",1,-1,1) str = replace(str,"""","""",1,-1,1) str = replace(str,"'","""",1,-1,1) str = replace(str,"=","=",1,-1,1) str = replace(str," "," ",1,-1,1) str = replace(str,"select","sel_ect",1,-1,1) str = replace(str,"join","jo_in",1,-1,1) str = replace(str,"union","un_ion",1,-1,1) str = replace(str,"where","wh_ere",1,-1,1) str = replace(str,"insert","ins_ert",1,-1,1) str = replace(str,"delete","del_ete",1,-1,1) str = replace(str,"update","up_date",1,-1,1) str = replace(str,"like","lik_e",1,-1,1) str = replace(str,"drop","dro_p",1,-1,1) str = replace(str,"create","cr_eate",1,-1,1) str = replace(str,"modify","mod_ify",1,-1,1) str = replace(str,"rename","ren_aMe",1,-1,1) str = replace(str,"alter","alt_er",1,-1,1) str = replace(str,"cast","ca_st",1,-1,1) sql_filter = str end function %> <% set rs = server.CreateObject("adodb.recordset") qry = "select * from CMS where pageid = 12" rs.open qry, conn %> African American Wedding Planning - BlackBridalGuide.com <% Set rsmeta=Server.CreateObject("Adodb.Recordset") qry = "select * from products where categoryid = 30" rsmeta.open qry, conn if not rsmeta.bof or not rsmeta.eof then do until rsmeta.eof meta = meta & rsmeta("productname") & ", " rsmeta.movenext loop end if rsmeta.close set rsmeta = nothing %>
<% set rsbanner = server.CreateObject("adodb.recordset") if Request.ServerVariables("SCRIPT_NAME") = "/black/index.asp" then banner = " select * from banners where page_name = 'Home'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/wedding_gown.asp" then banner = " select * from banners where page_name = 'Wedding_Gowns'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/bridesmaid_gown.asp" then banner = " select * from banners where page_name = 'Bridesmaids_Gown'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/mens_wear.asp" then banner = " select * from banners where page_name = 'Menswear'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/jewelry.asp" then banner = " select * from banners where page_name = 'Jewelry'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/product.asp" then banner = " select * from banners where page_name = 'Wedding_Shop'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/local_vendors.asp" then banner = " select * from banners where page_name = 'Local_Vendors'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/articles.asp" OR Request.ServerVariables("SCRIPT_NAME") = "/black/article_detail.asp" then banner = " select * from banners where page_name = 'Articles'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/poll_result.asp" then banner = " select * from banners where page_name = 'Poll'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/aboutus.asp" then banner = " select * from banners where page_name = 'AboutUs'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/contactus.asp" then banner = " select * from banners where page_name = 'ContactUs'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/disclaimer.asp" then banner = " select * from banners where page_name = 'disclaimer'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/shipping_policy.asp" then banner = " select * from banners where page_name = 'Shipping'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/signup.asp" then banner = " select * from banners where page_name = 'SignUp'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/email_friend.asp" then banner = " select * from banners where page_name = 'Email Friend'" elseif Request.ServerVariables("SCRIPT_NAME") = "/black/products.asp" then if Request.QueryString("categoryid") <> "" then banner = " select * from cart_banners where cat_id = "& Request.QueryString("categoryid") else banner = " select * from cart_banners" end if else banner = " select * from banners where page_name is Null" end if rsbanner.open banner, conn if not rsbanner.eof then %> <%else%> <%end if rsbanner.close set rsbanner = nothing %>
" target="<%=rsbanner("target")%>" >" alt="<%=rsbanner("alt_text")%>" border="0" width="460" height="60"/>
<% set rsvendors = server.CreateObject("adodb.recordset") rsvendors.open " select * from vendors order by company_name asc",conn if not rsvendors.eof then xtd = 1 do while not rsvendors.eof 'if xtd mod 3 = 0 then ' Response.Write("") 'end if %> <% rsvendors.movenext xtd = xtd + 1 loop end if %>
<%=rs("pagetitle")%>  
<%=rs("ptext")%>
 
<%=rsvendors("company_name")%>
<%if rsvendors("contact_name") <> "" then%> <%=rsvendors("contact_name")%>
<%end if%> <%=rsvendors("address")%>, <%=rsvendors("vendor_state")%>
<%=rsvendors("phone")%>
<%if rsvendors("email_address") <> "" then%> <%=rsvendors("email_address")%>
<%end if%> <%if rsvendors("vendor_url") <> "" then%> <%=rsvendors("vendor_url")%>
<%end if%>
 
Home | About Us | Contact Us |Privacy policy/Terms of use | Shipping Policy | Investment Info
Copyrights © 2009 - All rights reserved by BlackBridalGuide.com Site Developed by: Balianti, Inc