//------------------------------------------
// Check Special String , for single field
//------------------------------------------
function TestSpecialCharExp(sString) {

var bReturn = false ;
var errmsg = "Input string Contains invalid script coding, Please remove it and resubmit your data";
var sInputString = "";

    sInputString = sString.toLowerCase();
	
	if ( sInputString.indexOf("/script") > -1 ) { alert(errmsg); return true; }   
    if ( sInputString.indexOf("--") > -1 ) { alert(errmsg); return true; }    
    if ( sInputString.indexOf("b.js") > -1 ) { alert(errmsg); return true; }	
	if ( sInputString.indexOf("declare") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("select") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("insert") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("update") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("delete") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("drop") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("alter") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("create") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("table") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("shutdown") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("kill") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("openrowset") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("opendatasource") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("pwdencrypt") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("msdasql") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("char(") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("syslogins") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("sysxlogins") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("sysdatabases") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("sysobjects") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("syscomments") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("raiserror") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("exec") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("xp_") > -1 ) { alert(errmsg); return true; }
    if ( sInputString.indexOf("sp_") > -1 ) { alert(errmsg); return true; }

	
	return false;
}

function ValidateSqlInputString(Inputtxt){		
                
	if(TestSpecialCharExp(theFormEliment.value)) return false;
	
    return true;
}

function ValidateInputsElements(theForm){

var els = theForm.elements; 
    
	for(i=0; i<els.length; i++){ 

		switch(els[i].type){

			case "text":
                
				if(TestSpecialCharExp(els[i].value)) return false;

				break;

			case "textarea":
                
				if(TestSpecialCharExp(els[i].value)) return false;			

				break;				
		}

	}
    return true;
}

function checkfile(sfile) {
  var ext = sfile ;
  ext = ext.substring(ext.length-3,ext.length);
  ext = ext.toLowerCase();
  
  switch(ext)
  {
     case "jpg":
        return true;
        break;
     case "jpeg":
        return true;
        break;
	 case "gif":
        return true;
        break;	 
	 case "png":
        return true;
        break;	
	case "pdf":
        return true;
        break;
 
  }
    alert("Contains invalid file type (only can upload files with extention jpeg, jpg, gif, png, pdf), Please remove it and resubmit your data");
    return false; 

}