zoukankan
html css js c++ java
防止SQL注入ASP代码
<%
'
--------定义部份------------------
Dim
Fy_Post,Fy_Get,Fy_In,Fy_Inf,Fy_Xh,Fy_db,Fy_dbstr
'
自定义需要过滤的字串,用 "枫" 分隔
Fy_In
=
"
'枫;枫and枫exec枫insert枫select枫delete枫update枫count枫*枫%枫chr枫mid枫master枫truncate枫char枫declare
"
Fy_Inf
=
split
(Fy_In,
"
枫
"
)
If
Request.Form
<>
""
Then
For
Each
Fy_Post In Request.Form
For
Fy_Xh
=
0
To
Ubound
(Fy_Inf)
If
Instr
(
LCase
(Request.Form(Fy_Post)),Fy_Inf(Fy_Xh))
<>
0
Then
Response.Write
"
<Script Language=JavaScript>alert('提示:您想通过SQL注入↓\n\n请您马上停止这种非法行为,您的IP已被我们的系统记录,查明以后我们将移交公安机关严肃处理!');</Script>
"
Response.Write
"
非法操作!系统做了如下记录↓<br>
"
Response.Write
"
操作IP:
"
&
Request.ServerVariables(
"
REMOTE_ADDR
"
)
&
"
<br>
"
Response.Write
"
操作时间:
"
&
Now
&
"
<br>
"
Response.Write
"
操作页面:
"
&
Request.ServerVariables(
"
URL
"
)
&
"
<br>
"
Response.Write
"
提交方式:POST<br>
"
Response.Write
"
提交参数:
"
&
Fy_Post
&
"
<br>
"
Response.Write
"
提交数据:
"
&
Request.Form(Fy_Post)
Response.End
End
If
Next
Next
End
If
If
Request.QueryString
<>
""
Then
For
Each
Fy_Get In Request.QueryString
For
Fy_Xh
=
0
To
Ubound
(Fy_Inf)
If
Instr
(
LCase
(Request.QueryString(Fy_Get)),Fy_Inf(Fy_Xh))
<>
0
Then
Response.Write
"
<Script Language=JavaScript>alert('提示:您想通过SQL注入↓\n\n请您马上停止这种非法行为,您的IP已被我们的系统记录,查明以后我们将移交公安机关严肃处理!');</Script>
"
Response.Write
"
非法操作!我们已经给你做了如下记录↓<br>
"
Response.Write
"
操作IP:
"
&
Request.ServerVariables(
"
REMOTE_ADDR
"
)
&
"
<br>
"
Response.Write
"
操作时间:
"
&
Now
&
"
<br>
"
Response.Write
"
操作页面:
"
&
Request.ServerVariables(
"
URL
"
)
&
"
<br>
"
Response.Write
"
提交方式:GET<br>
"
Response.Write
"
提交参数:
"
&
Fy_Get
&
"
<br>
"
Response.Write
"
提交数据:
"
&
Request.QueryString(Fy_Get)
Response.End
End
If
Next
Next
End
If
%>
查看全文
相关阅读:
Vuejs
Vuejs
Vuejs
Vuejs
JS高级之面试必须知道的几个点
用vue快速开发app的脚手架工具
作为一名前端开发工程师,你必须掌握的WEB模板引擎:Handlebars
REST接口设计规范总结
eclipse实现JavaWeb应用增量打包
转载:作为面试官,我是怎么快速判断程序员能力的?
原文地址:https://www.cnblogs.com/ryb/p/357804.html
最新文章
Traffic Management Gym
最小表示法
Tennis Game CodeForces
POJ 2987 Firing (最大权闭合图)
POJ 3713 Transferring Sylla (三联通分量)
网络流n题
Going Home POJ
POJ 3352 Road Construction ; POJ 3177 Redundant Paths (双联通)
uml中的几种关系
Http协议
热门文章
spring中的DisposableBean和InitializingBean,ApplicationContextAware的用法
整合spring,springmvc和mybatis
Hibernate Validator
Retention、Documented、Inherited三种注解
spring报nested exception is java.lang.IllegalArgumentException: @EnableAsync annotation metadata was not injected错误
java.lang.NullPointerException org.apache.jsp.WEB_002dINF.pages.imagecheck.test_jsp._jspInit(test_jsp.java:22)的原因
关于spring配置文件properties的问题
spring的懒加载
Vuejs
Vuejs
Copyright © 2011-2022 走看看