var getQueryString = function(name) {
var reg = new RegExp("(^|&)" + name + "=([^&]*)(&|$)", "i");
var r = window.location.search.substring(1).match(reg);
if (r != null) return unescape(r[2]);
return null;
};
getQueryString('biz')
//更完善版本:解决上面可能unescape出现的问题,这个更保险
getUrlParam: function (name) {
var reg = new RegExp("(^|&)" + name + "=([^&]*)(&|$)");
var r = window.location.search.substr(1).match(reg);
return r ? decodeURIComponent(r[2]).replace(/<iframe/g,"").replace(/<\/iframe>/g,"").replace(/<script/g,"").replace(/<\/script>/g,"").replace(/document.write/g,"").replace(/</g,"").replace(/>/g,"").replace(/alert/g,"").replace(/eval/g,"").replace(/"/g,"").replace(/'/g,"") : null;
}