% if session("admin")="" then response.redirect "index.asp" end if lid=request("id") if isnumeric(lid)=false then response.write "" response.end end if sql="select * from data where id=cint('"&lid&"')" set rs=server.createobject("adodb.recordset") rs.open sql,connstr,1,1 if not rs.eof then if HtmlEncode(request.form("question"))<>"" then sql="select * from data where id=cint('"&lid&"')" set rs=server.createobject("adodb.recordset") rs.open sql,connstr,3,2 rs("question")=HtmlEncode(request.form("question")) rs("key")=HtmlEncode(request.form("key")) rs.update response.redirect "ook.asp" end if end if %>