If string = "" Then string = " "
ChkString = Replace(string, "'", "'")
The line in red is totally bogus. Kill it before it multiplies. The *LAST* thing you want to do is convert "" to a space!
As for the rest...
strQuery = "select name, status, objid from object where (objid like '" & Request.QueryString("objid") & "%') "
Where, pray tell, in your <form> to you see a field named objid
The only field you show is this one:
<input name="toggle_maint" type="checkbox" value="<% = objid %>">
Secondly, given that toggle_maint
contains exactly and precisely the value objid
why would you then use LIKE
in your query?
Thirdly, if the objid
field in the DB is a NUMBER, then you should never put apostrophes around the value in the query.
Fourthly, what do you do if the user checks 2 or 3 or 4 of those checkboxes?