📄 e.asp
字号:
<!--#include file="boardconn.asp"-->
<!--#include file="inc/sql.asp"-->
<!--#include file="inc/inc.asp"-->
<!--#include file="inc/ip.asp"-->
<!--#include file="inc/const.asp"-->
<!--#include file="inc/validitycheck.asp"-->
<% call validitycheck("userinfo",0) %>
<!--#include file="function.asp"-->
<!--#include file="inc/MD5.asp"-->
<HTML>
<HEAD>
<TITLE>修改注册信息 - <%=HOST_NAME%> - <%=HOST_LIST%></TITLE>
<META http-equiv=Content-Type content="text/html; charset=GB2312">
<link rel="shortcut icon" href="images/bbs.ico">
<link href="style/style.css" rel="stylesheet" type="text/css">
<script language="JavaScript">
<!--
function form1_onsubmit() {
if (document.form1.Key.value=="")
{
alert("友情提示!\n\n请完整输入贴吧名称!")
document.form1.Key.focus()
return false
}
}
// -->
</script>
<script language="JavaScript">
<!--
function form_onsubmit() {
if (document.form.username.value=="")
{
alert("友情提示!\n\n请完整输入会员帐号!")
document.form.username.focus()
return false
}
else if(document.form.checkPassword.value!=document.form.password.value)
{
alert("友情提示!\n\n验证密码和会员密码不一致。")
document.form.password.focus()
return false
}
else if (document.form.sex.value=="")
{
alert("友情提示!\n\n请完整输入会员性别!")
document.form.sex.focus()
return false
}
else if (document.form.area.value=="")
{
alert("友情提示!\n\n请完整输入会员地区!")
document.form.area.focus()
return false
}
else if (document.form.email.value=="")
{
alert("友情提示!\n\n请完整输入邮件地址!")
document.form.email.focus()
return false
}
else if (document.form.oicq.value=="")
{
alert("友情提示!\n\n请完整输入OICQ号码!")
document.form.oicq.focus()
return false
}
else if (document.form.question.value=="")
{
alert("友情提示!\n\n请完整输入密码问题!")
document.form.question.focus()
return false
}
else if (document.form.answer.value=="")
{
alert("友情提示!\n\n请完整输入密码答案!")
document.form.answer.focus()
return false
}
else if (document.form.verifycode.value=="")
{
alert("友情提示!\n\n请完整输入验证编码!")
document.form.verifycode.focus()
return false
}
else if (document.form.username.value.length <3 )
{
alert("友情提示!\n\n帐号长度不得小于3字节或大于18字节,当前的帐号长度为:"+form.username.value.length+"")
document.form.username.focus()
return false
}
else if (document.form.username.value.length >18 )
{
alert("友情提示!\n\n帐号长度不得小于3字节或大于18字节,当前的帐号长度为:"+form.username.value.length+"")
document.form.username.focus()
return false
}
else if (document.form.question.value.length <3 )
{
alert("友情提示!\n\n密码问题长度不得小于3字节或大于30字节,当前的密码问题长度为:"+form.question.value.length+"")
document.form.question.focus()
return false
}
else if (document.form.question.value.length >30 )
{
alert("友情提示!\n\n密码问题长度不得小于3字节或大于30字节,当前的密码问题长度为:"+form.question.value.length+"")
document.form.question.focus()
return false
}
else if (document.form.answer.value.length <3 )
{
alert("友情提示!\n\n密码答案长度不得小于3字节或大于50字节,当前的密码答案长度为:"+form.answer.value.length+"")
document.form.answer.focus()
return false
}
else if (document.form.answer.value.length >50 )
{
alert("友情提示!\n\n密码答案长度不得小于3字节或大于50字节,当前的密码答案长度为:"+form.answer.value.length+"")
document.form.answer.focus()
return false
}
}
// -->
</script>
</HEAD>
<BODY bgColor=#ffffff leftMargin=0 topMargin=0>
<!--#include file="top.asp"-->
<TABLE cellSpacing=0 cellPadding=0 width=100% align=center border=0>
<TBODY>
<TR>
<TD width=1% height=20 bgColor=<%=HOST_TITLE%>></TD><TD width=99% height=20 bgColor=<%=HOST_TITLE%> class=INDEX_VMALL><a href="index.asp"><font color=#ffffff>首页</font></a> <font color=<%=HOST_FONT%>>></font> <font color=<%=HOST_FONT%>><u>修改注册信息</u></font></TD></TR></TBODY></TABLE>
<% if Request.QueryString("action") <> "modifyuser" then %>
<%
Sql="select * from QiQiBoy_User_Disp where UserName='"&UserName&"' and Pwd='"&Request.Cookies("Pwd")&"'"
Set Rs=Conn.execute(Sql)
If not rs.eof then
%>
<TABLE cellSpacing=0 cellPadding=0 width=100%" align=center border=0 bgColor=#ffffff>
<TBODY>
<TR>
<TD>
<TABLE cellSpacing=0 cellPadding=0 width="100%" align=center border=0>
<TBODY>
<TR>
<TD width="5%" height="30"></TD>
<TD width="90%" height="30" colspan="2"></TD>
<TD width="5%" height="30"></TD></TR>
<form name="form" onsubmit="return form_onsubmit()" method="post" action="e.asp?action=modifyuser">
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>会员帐号:</td><TD width="70%" height="30"><INPUT maxLength=18 size=25 name=username value="<%=Response.Write(rs(1))%>" readonly> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>会员密码:</td><TD width="70%" height="30" class=INDEX_XMALL><INPUT type=password maxLength=18 size=25 name=password> (留空不做修改密码)</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>验证密码:</td><TD width="70%" height="30" class=INDEX_XMALL><INPUT type=password maxLength=18 size=25 name=checkPassword></TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>会员性别:</td><TD width="70%" height="30"><SELECT name="sex" size="1"><OPTION value="1" <% if Rs("sex")=1 then response.Write("selected") end if%>>帅哥</OPTION><OPTION value="2" <% if Rs("sex")=2 then response.Write("selected") end if%>>靓女</OPTION></SELECT> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>会员地区:</td><TD width="70%" height="30"><INPUT maxLength=180 size=30 name=area value="<%=Response.Write(rs(19))%>"> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>邮件地址:</td><TD width="70%" height="30"><INPUT maxLength=180 size=40 name=email value="<%=Response.Write(rs(4))%>"> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>OICQ号码:</td><TD width="70%" height="30"><INPUT maxLength=20 size=25 name=oicq value="<%=Response.Write(rs(5))%>"> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>密码问题:</td><TD width="70%" height="30"><INPUT maxLength=30 size=30 name=question value="<%=Response.Write(rs(6))%>"> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>密码答案:</td><TD width="70%" height="30"><INPUT maxLength=50 size=50 name=answer value="<%=Response.Write(rs(7))%>"> *</TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>个人主页:</td><TD width="70%" height="30"><INPUT size=60 name=websites value="<%=Response.Write(rs(20))%>"></TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>个人简介:</td><TD width="70%" height="30"><TEXTAREA name="list" rows="8" cols="60"><%=Response.Write(rs(21))%></TEXTAREA></TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>形象照片:</td><TD width="70%" height="30" class=INDEX_XMALL><INPUT size=50 name=Photo id=photo> <% if Rs("Photo")<>"" then response.Write("<a href=my_file.asp?/="&rs(22)&" target=_blank><IMG src=my_file.asp?/="&rs(22)&" border=0 width=80 height=80 ></a>") else response.Write("") end if %></TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>照片上传:</td><TD width="70%" height="30" class=INDEX_XMALL><iframe frameborder="0" marginheight="0" marginwidth="0" scrolling="no" height="25" width="100%" name="upfile" src="my_up.asp"></iframe></TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30" align="right" class=INDEX_XMALL>验证编码:</td><TD width="70%" height="30"><input type="text" name="verifycode" maxLength=4 size="8"> * <%Call GetSafeCode%></TD>
<TD width="5%" height="30"></TD></TR>
<TR>
<TD width="5%" height="30"></TD>
<TD width="20%" height="30"></td><TD width="70%" height="30"><INPUT type=submit value=" 提交修改信息 "> <INPUT type=reset value=" 擦除重填 "> </TD>
<TD width="5%" height="30"></TD></TR></form>
<TR>
<TD width="5%" height="30"></TD>
<TD width="90%" height="10" colspan="2"></TD>
<TD width="5%" height="30"></TD></TR>
<% end if%>
<% else %>
<%
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style=font:9pt Verdana>"
response.write "<center><font face=Georgia,Tahoma size=2><u>友情提示:服务器禁止非法操作...</u></font></center>"
response.write "</td></tr></table></center>"
response.end
end if
%>
<%
fqys=request.servervariables("query_string")
dim nothis(18)
nothis(0)="net user"
nothis(1)="xp_cmdshell"
nothis(2)="/add"
nothis(3)="exec%20master.dbo.xp_cmdshell"
nothis(4)="net localgroup administrators"
nothis(5)="select"
nothis(6)="count"
nothis(7)="asc"
nothis(8)="char"
nothis(9)="mid"
nothis(10)="'"
nothis(11)=":"
nothis(12)=""""
nothis(13)="insert"
nothis(14)="delete"
nothis(15)="drop"
nothis(16)="truncate"
nothis(17)="from"
nothis(18)="%"
errc=false
for i= 0 to ubound(nothis)
if instr(FQYs,nothis(i))<>0 then
errc=true
end if
next
if errc then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style=font:9pt Verdana>"
response.write "<center><font face=Georgia,Tahoma size=2><u>友情提示:服务器禁止非法操作...</u></font></center>"
response.write "</td></tr></table></center>"
response.end
end if
%>
<%
dim Sex,Email,OICQ,Question,Answer
UserName=replace(trim(Request.Form("UserName")),"'","‘")
Password=replace(trim(Request.Form("Password")),"'","‘")
Sex=replace(trim(Request.Form("Sex")),"'","‘")
Area=replace(trim(Request.Form("Area")),"'","‘")
Email=replace(trim(Request.Form("Email")),"'","‘")
OICQ=replace(trim(Request.Form("OICQ")),"'","‘")
Question=replace(trim(Request.Form("Question")),"'","‘")
Answer=replace(trim(Request.Form("Answer")),"'","‘")
Websites=replace(trim(Request.Form("Websites")),"'","‘")
List=replace(trim(Request.Form("List")),"'","‘")
Photo=replace(trim(Request.Form("Photo")),"'","‘")
if not IsNumeric(request("verifycode")) then
rs.close
set rs=nothing
Response.Write ("<script>alert('友情提示!\n\n登陆验证码必须是数字!');history.back();</script>")
Response.end
end if
if (int(session("SafeCode"))<>int(request("verifycode"))) then
rs.close
set rs=nothing
Response.Write ("<script>alert('友情提示!\n\n发送验证编码错误!');history.back();</script>")
Response.end
end if
If UserName="" or Sex="" or Area="" or Email="" or OICQ="" or Question="" or Answer="" Then
Response.Write ("<script>alert('友情提示!\n\n请完整填写各项信息!');history.back();</script>")
Response.end
End If
if Trim(UserName)="" or Len(UserName)>18 or Len(UserName)<3 then
Response.Write ("<script>alert('友情提示!\n\n会员帐号不得小于3或大于18字节!');history.back();</script>")
Response.end
else
UserName=Trim(UserName)
end if
if Instr(UserName,">")>0 or Instr(UserName,"<")>0 or Instr(UserName,"=")>0 or Instr(UserName,"%")>0 or Instr(UserName,chr(32))>0 or Instr(UserName,"?")>0 or Instr(UserName,"&")>0 or Instr(UserName,";")>0 or Instr(UserName,",")>0 or Instr(UserName,"'")>0 or Instr(UserName,",")>0 or Instr(UserName,chr(34))>0 or Instr(UserName,chr(9))>0 or Instr(UserName,"⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -