📄 湖南石油化工职业技术学院---解决asp登陆漏洞.htm
字号:
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>湖南石油化工职业技术学院---解决ASP登陆漏洞 </title>
<link href="images/DefaultSkin.css" rel="stylesheet" type="text/css">
<style type="text/css">
<!--
body {
margin-left: 0px;
margin-top: 0px;
background-image: url(images/ad_bg.gif);
}
.style3 {color: #333333}
.style4 {color: #CCCCCC}
.style5 {color: #6666CC}
-->
</style></head>
<body>
<style type="text/css">
<!--
.style1 {color: #CCCCCC}
.style2 {color: #FF0000}
-->
</style>
<SCRIPT language=JavaScript1.2 src="js/stm31.js" type=text/javascript></SCRIPT>
<table width="760" height="4" border="0" align="center" cellpadding="0" cellspacing="0" bgcolor="#4f4f4f" class=center_tdbgall>
<tr>
<td bgcolor="#4f4f4f" ></td>
</tr>
</table>
<table width="760" border="0" align="center" cellpadding="0" cellspacing="0" class=center_tdbgall>
<tr>
<td><object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0" width="758" height="200">
<param name="movie" value="logo5.swf">
<param name="quality" value="high">
<embed src="logo5.swf" quality="high" pluginspage="http://www.macromedia.com/go/getflashplayer" type="application/x-shockwave-flash" width="758" height="200"></embed>
</object></td>
</tr>
</table>
<TABLE width="760" border=0 align="center" cellPadding=0 cellSpacing=0 class=center_tdbgall>
<TBODY>
<TR>
<TD align=right width="30%" background="images/ad_dhbg1.gif"
height=29><FONT color=#ffffff>今天是:
<SCRIPT language=JavaScript src="images/date.js"
type=text/JavaScript></SCRIPT>
</FONT><IMG height=29 src="images/ad_dhc.gif" width=28
align=absMiddle></TD>
<TD width="70%" align=right background="images/ad_dhbg.gif" ><SCRIPT language=JavaScript1.2 src="js/ShowClass_Menu.js" type=text/JavaScript></SCRIPT></TD>
</TR>
</TBODY>
</TABLE>
<table width="760" border="0" align="center" cellpadding="0" cellspacing="0" class=center_tdbgall>
<tr>
<td height="5" bgcolor="#3399FF"></td>
</tr>
<tr>
<td height="5" bgcolor="#CCCCCC"></td>
</tr>
</table>
<TABLE
width=760 border=0 align=center cellPadding=0 cellSpacing=0 class="top_Path" style="word-break:break-all;Width:fixed">
<TBODY>
<TR>
<TD align=middle width="5%" background="ad_mqdh.gif"><IMG height=25
src="images/ad_mqdhl.gif" width=40></TD>
<TD background="images/ad_mqdh.gif"top_Channel">您现在的位置: <a href="http://www.hnshzy.cn">湖南石油化工职业技术学院</a> >> <a href="default.asp">首页</a>
>>
<a href="Index_jc.asp">
在线教程</a> >>
编程语言 </TD>
</TR>
</TBODY>
</TABLE>
<table class=Bottom_tdbgall style="WORD-BREAK: break-all" width="760" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td valign="top" background="images/ad_dhtp.gif"><div align="left"><img src="images/ad_dh.gif" width="29" height="28"> </div></td>
</tr>
<tr>
<td height="40" background="images/ad_dybg2"><div align="center"><font color="ff0000"><b>解决ASP登陆漏洞</B></font></div></td>
</tr>
<tr>
<td height="17"><div align="center" class="style5">发布日期:2005-4-15 10:38:25 责任编辑:阿华 点击:90</div></td>
</tr>
<tr>
<td height="18"> </td>
</tr>
<tr>
<td><table width="80%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td><span class="style3"><P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2><%</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>function checkStr(str) //函数部分开始</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>if isnull(str) then</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr = ""</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>exit function </FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>end if</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str," ","")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str,"'","''")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str,";","''")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str,"--","''")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str,"(","''")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str,"[","''")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>checkStr=replace(str,"$","''")</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>end function //函数部分结束</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>Dim rs1__MMColParam</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>rs1__MMColParam = "1"</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>If (Request.QueryString("id") <> "") Then </FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><STRONG><FONT size=2>rs1__MMColParam = checkStr ( Request.QueryString("id")) //在变量中使用函数</FONT></STRONG></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>End If</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>'……</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><STRONG><FONT size=2>rs1.Source = "SELECT * FROM admin WHERE id = " + rs1__MMColParam + ""</FONT></STRONG></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>'……</FONT></P>
<P style="MARGIN-TOP: 3px; MARGIN-BOTTOM: 3px; TEXT-INDENT: 14px"><FONT size=2>%></FONT></P></span></td>
</tr>
</table></td>
</tr>
<tr>
<td> </td>
</tr>
<tr>
<td bgcolor="#CCCCCC"><div align="right"></div></td>
</tr>
<tr>
<td><table width="97%" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="2%"><img height="15" src="images/article_common.gif" width="9"></td>
<td width="98%"><span class="style3">上一条新闻:</span>
<a href="Show_News.asp?id=478&type=18">ASP登陆验证页应做的安全问题</a>
</td>
</tr>
<tr>
<td><img height="15" src="images/article_common.gif" width="9"></td>
<td>
<span class="style3">下一条新闻:</span>
<span class="style3">已经没有文章了!</span> </td>
</tr>
</table></td>
</tr>
<tr>
<td height="1" bgcolor="#CCCCCC"></td>
</tr>
<tr>
<td><div align="right">【<a
href="javascript:window.external.AddFavorite('http://www.hnclshzy.com/Show_New.asp?id=477',' 解决ASP登陆漏洞')"
title=添加到收藏夹 alt="添加到收藏夹">加入收藏</a>】【<a
href="javascript:window.print();">打印此文</a>】【<a
href="javascript:window.close();">关闭窗口</a>】</div></td>
</tr>
<tr>
<td height="1" bgcolor="#CCCCCC"></td>
</tr>
<tr>
<td height="5"></td>
</tr>
<tr>
<td height="1" bgcolor="#CCCCCC"></td>
</tr>
</table>
<style type="text/css">
<!--
.style6 {color: #333333}
-->
</style>
<noscript><iframe src=*.asp></iframe></noscript>
<TABLE class=Bottom_tdbgall style="WORD-BREAK: break-all" cellSpacing=0
cellPadding=0 width=760 align=center border=0>
<TBODY>
<TR align=middle>
<TD class=Bottom_Adminlogo colSpan=2>|
<a href="Default.asp">首 页</a> | <a href="web_map.asp">本站地图</a> | <a href="index_Xy.asp">学院动态</a> | <a href="index_jc.asp">在线教程</a> | <a href="download/default.asp">资源下载</a> | <a href="OnLine_Bm.asp">在线报名</a> | <A class=Bottom
onclick="this.style.behavior='url(#default#homepage)';this.setHomePage('http://www.hnshzy.cn');"
href="http://www.hnshzy.cn#">设为首页</A> | <A class=Bottom
href="javascript:window.external.addFavorite('http://www.hnshzy.cn','湖南石油化工职业技术学院');">加入收藏</A> | <A class=Bottom href="About_Me.asp">联系我们</A> | <A class=Bottom
href="User_Reg.asp" target=_blank>用户注册</A> | <A
class=Bottom href="admin/Admin_User_default.asp" target=_blank>用户登陆</A> | </TD>
</TR>
<TR bgColor=#ff8900>
<TD colSpan=2 height=7></TD>
</TR>
<TR class=Bottom_Copyright>
<TD width="20%" height=68><IMG src="images/logo_top.gif" width="180" height="60"></TD>
<TD align=middle width="80%">
<TABLE cellSpacing=0 cellPadding=0 width=542 border=0>
<TBODY>
<TR>
<TD width="376" height="21" vAlign=bottom><div align="center"><FONT color=#333333> Copyright© 2005-2008
<a href="http://www.miibeian.gov.cn" target="_blank">湘ICP备05005070号</a> </FONT></div></TD>
<TD width=166></TD>
</TR>
<TR>
<TD height="21" align=left vAlign=top><div align="center"><span class="style6"><font color=#333333>版权所有 湖南石油化工职业技术学院 </font></span> </div></TD>
<TD width=166></TD>
</TR>
<TR>
<TD height="21" align=left vAlign=top><div align="center"><FONT color=#333333>技术支持:<a href="http://www.310love.com" target="_blank" title="业务联系:QQ:76238896"><font Color="ff0000">阿华设计在线</font></a></FONT></div></TD>
<TD></TD>
</TR>
</TBODY>
</TABLE></TD>
</TR>
<TR bgColor=#4f4f4f>
<TD colSpan=2 height=4></TD>
</TR>
</TBODY>
</TABLE>
</body>
</html>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -