quhuiok.asp

矮子多用户版客户管理系统2.0Bate2

<% @language="vbscript" %>
<!--#include file="Md5.asp"-->
<% 
response.buffer=true
Response.Expires=0
dim name
dim pass
dim rpass

name=Request.form("name")
pass=request("pass")
rpass=request("rpass")


if InStr(ucase(name),"奸")>0 or InStr(ucase(name),"淫")>0 or InStr(ucase(name),"娼")>0 or InStr(ucase(name),"嫖")>0 or InStr(ucase(name),"性")>0 and InStr(ucase(name),"交")>0 or InStr(ucase(name),"妓")>0 or InStr(ucase(name),"色")>0 and InStr(ucase(name),"黄")>0 or InStr(ucase(name),"色")>0 and InStr(ucase(name),"情")>0 or InStr(ucase(name),"日")>0 and InStr(ucase(name),"妈")>0 or InStr(ucase(name),"日")>0 and InStr(ucase(name),"妹")>0 or InStr(ucase(name),"日")>0 and InStr(ucase(name),"姐")>0 or InStr(ucase(name),"日")>0 and InStr(ucase(name),"娘")>0 or InStr(ucase(name),"日")>0 and InStr(ucase(name),"奶")>0 or InStr(ucase(name),"乳")>0 or InStr(ucase(name),"阴")>0 or InStr(ucase(name),"操")>0 and InStr(ucase(name),"妈")>0 or InStr(ucase(name),"dia")>0 or InStr(ucase(name),"叼")>0 or InStr(ucase(name),"口刀")>0 or InStr(ucase(name),"色")>0 or InStr(ucase(name),"靠")>0 then
	response.write "注册失败，姓名包含不雅字眼！"
	response.end
end if
if InStr(ucase(name),"=")>0 or InStr(ucase(name),"`")>0 or InStr(ucase(name)," ")>0 or InStr(ucase(name),"　")>0 or InStr(ucase(name),"'")>0 or InStr(ucase(name),chr(34))>0 or InStr(ucase(name),"\")>0 or InStr(ucase(name),",")>0 or InStr(ucase(name),"<")>0 or InStr(ucase(name),">")>0 then
	response.write "不能含有空格、<、>、=、引号、半角逗号、反斜杠等字符！"
	response.end
end if
if InStr(ucase(name),"&")>0 or InStr(ucase(name),"=")>0 or InStr(ucase(name)," ")>0 then
	response.write "姓名包含非法字符！"
	response.end
end if

If pass<>rpass or pass="" Then
response.write "SORRY <br>"
response.write "请重新输入你的密码！"
response.end
end if
%>
<!--#include file="conn.asp" -->




<%

dim rs2,sql2,weburl
set rs2=server.createobject("adodb.recordset")                
sql2="select * from system"
rs2.Open sql2,conn,1,3
weburl=rs2("weburl")
rs2.close
set rs2=nothing


dim rs,sql
set rs=server.createobject("adodb.recordset")                
sql="select * from mclass where name='"&name&"'"
rs.Open sql,conn,1,3
if rs.eof or rs.bof then
response.write "<p align='center'>该用户已注册过！</p>"
else
rs("pass")=md5(pass)
rs.Update
%>
<html>
<head>
<title>取回密码 - 成功！</title>
<meta http-equiv=refresh content="1; url=<%=weburl%>">
<BODY bgcolor="#ffffff"  text="#000000" link="#000080" alink="#800000" vlink="#2f2f4f" marginheight=0 marginwidth=0 topmargin=10 leftmargin=20 rightmargin=0>
Loading ....
<p align="center"><font color="#FF0000">新密码设置成功！</font><br>
<br>
登录页面加载中......</p>
</body></html>
<%

rs.close
set rs=nothing
conn.close
set conn=nothing

end if
%>