function checkstring(ctlid) {var strReturnval="";if(document.getElementById(ctlid)!=null) {if(document.getElementById(ctlid).value!="") {document.getElementById(ctlid).value=ReplaceSystemCommond(document.getElementById(ctlid).value);}}} function replacingstring(str,strR,orgStr) {var iCount;var temp1;var temp2;str=str.toLowerCase();iCount=str.indexOf(strR);if(iCount>=0) {temp1=orgStr.substring(0,iCount);temp2=orgStr.substring(iCount+strR.length);str="";str=temp1+temp2;orgStr=str;return replacingstring(str,strR,orgStr);} return orgStr;} function ReplaceSystemCommond(str) {if(str!="") {str=replacingstring(str.toLowerCase(),"xp_cmdshell",str);str=replacingstring(str.toLowerCase(),"syscolumns",str);str=replacingstring(str.toLowerCase(),"sysobjects",str);str=replacingstring(str.toLowerCase(),"vbscript",str);str=replacingstring(str.toLowerCase(),"javascript",str);str=replacingstring(str.toLowerCase(),"",str);str=replacingstring(str.toLowerCase(),"",str);str=replacingstring(str.toLowerCase(),"