📄 f_sql.asp

📁 更新说明： 1.修复SQL注入 2.防止数据库被恶意下载

💻 ASP

字号:

<%
Dim f_sqlPost,f_sqlGet,f_sqlIn,f_sqlInf,f_sqlXh,f_sqldb,f_sqldbstr
f_sqlIn = "'\;\and\exec\insert\select\delete\update\count\*\%\chr\mid\master\truncate\char\declare"
f_sqlInf = split(f_sqlIn,"\")
If Request.Form<>"" Then
For Each f_sqlPost In Request.Form
For f_sqlXh=0 To Ubound(f_sqlInf)
If Instr(LCase(Request.Form(f_sqlPost)),f_sqlInf(f_sqlXh))<>0 Then
response.redirect("error.asp?error=4")
Response.End
End If
Next
Next
End If
If Request.QueryString<>"" Then
For Each f_sqlGet In Request.QueryString
For f_sqlXh=0 To Ubound(f_sqlInf)
If Instr(LCase(Request.QueryString(f_sqlGet)),f_sqlInf(f_sqlXh))<>0 Then
response.redirect("error.asp?error=4")
Response.End
End If
Next
Next
End If
%>

💿 文件大小 12 K

👤 上传用户 lizibb

📂 所属分类数据库系统

🏷️ 相关标签

#SQL #更新 #数据库

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -