<%@LANGUAGE="VBSCRIPT"%><% ' *** Insert Record: construct a sql insert statement and execute it MM_editAction = CStr(Request("URL")) If (Request.QueryString <> "") Then MM_editAction = MM_editAction & "?" & Request.QueryString End If If (CStr(Request("MM_insert")) <> "") Then ' MM_tableName = "abc" MM_tableName = Replace(Request.Querystring("Table"), "'", "''") MM_fields = "name,name,',none,'',email,email,',none,'',street,street,',none,'',state,state,',none,'',zip,zip,none,none,NULL,tel,tel,none,none,NULL,fax,fax,none,none,NULL,subject,subject,',none,'',complaint,complaint,',none,''" MM_redirectPage = "list_complaint.php?table=" & Request.Querystring("Table") ' create the insert sql statement MM_tableValues = "" MM_dbValues = "" MM_fieldsArray = Split(MM_fields, ",") For i = LBound(MM_fieldsArray) To UBound(MM_fieldsArray) Step 5 FormVal = CStr(Request.Form(MM_fieldsArray(i))) Delim = MM_fieldsArray(i+2) If (Delim = "none") Then Delim = "" AltVal = MM_fieldsArray(i+3) If (AltVal = "none") Then AltVal = "" EmptyVal = MM_fieldsArray(i+4) If (EmptyVal = "none") Then EmptyVal = "" If (FormVal = "") Then FormVal = EmptyVal Else If (AltVal <> "") Then FormVal = AltVal ElseIf (Delim = "'") Then ' escape quotes FormVal = "'" & Replace(FormVal,"'","''") & "'" Else FormVal = Delim + FormVal + Delim End If End If If (i <> LBound(MM_fieldsArray)) Then MM_tableValues = MM_tableValues & "," MM_dbValues = MM_dbValues & "," End if MM_tableValues = MM_tableValues & MM_fieldsArray(i+1) MM_dbValues = MM_dbValues & FormVal Next MM_insertStr = "insert into " & MM_tableName & " (" & MM_tableValues & ") values (" & MM_dbValues & ")" ' finish the sql and execute it Set MM_insertCmd = Server.CreateObject("ADODB.Command") MM_insertCmd.ActiveConnection = "dsn=complain;" MM_insertCmd.CommandText = MM_insertStr MM_insertCmd.Execute ' redirect with URL parameters If (MM_redirectPage = "") Then MM_redirectPage = CStr(Request("URL")) End If If (InStr(1, MM_redirectPage, "?", vbTextCompare) = 0 And (Request.QueryString <> "")) Then MM_redirectPage = MM_redirectPage & "?" & Request.QueryString End If Call Response.Redirect(MM_redirectPage) End If %> <% ' set rec1 = Server.CreateObject("ADODB.Recordset") ' rec1.ActiveConnection = "dsn=complain;" ' rec1.Source = "SELECT * FROM abc" ' rec1.Source = "SELECT * FROM " & Replace(Request.Querystring("Table"), "'", "''") ' rec1.CursorType = 0 ' rec1.CursorLocation = 2 ' rec1.LockType = 3 ' rec1.Open ' rec1_numRows = 0 %> Consumer Complaint Center
C.C.C. Home Instructions Media Our Mission Support Us
  :: ::    
 
GO BACK " alt="POST A COMPLAINT IN THIS SECTION" title="POST A COMPLAINT IN THIS SECTION"> SUGGEST A COMPLAINT CATEGORY

Post Your Complaint. Please provide as much information as possible.
Your phone number and address will not be show to the general public, If you
would like us to get back to you, or help you with your issue, please give us contact
information.

Your Name:

Your Email Address:

 

Address Info:

Street:

State:

Zip:

Telephone:

Fax:

 

Complaint Information:

Compliant Subject:

Complaint:



 
Lobbyist Education Center Consumer Complaint Center Credit Education Center Consumer Advocacy Center Consumer Complaint Center