zhuru.asp

教学平台,教学学生登陆,课程发布,信息公告

<style type="text/css">
<!--
body,td,th {
	font-size: 12px;
}
body {
	background-color: #B1DB99;
}
-->
</style>
<%
	Dim Xy_Post,Xy_Get,Xy_In,Xy_Inf,Xy_Xh
	Xy_In=";笑and笑exec笑insert笑select笑delete笑update笑count笑*笑%笑chr笑mid笑master笑truncate笑char笑declare笑<笑>笑=笑|笑_execute笑exec笑union笑where笑join笑chr笑mid笑exists笑nchar笑count"
	Xy_Inf =split(Xy_In,"笑")
	If Request.Form<>"" Then
		For Each Xy_Post In Request.Form
			For Xy_Xh=0 To Ubound(Xy_Inf)
				If Instr(LCase(Request.Form(Xy_Post)),Xy_Inf(Xy_Xh))<>0 Then
					response.write "<BR><BR><Div><font color=red>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交错误,请不要提交非法数据<br>"
					response.write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;你的所做所为已经被记录在案<br><br><br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;操作ＩＰ："&Request.ServerVariables("REMOTE_ADDR")&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;操作时间："&Now&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;操作页面："&Request.ServerVariables("URL")&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交方式：POST<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交参数："&xy_post&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交数据："&Request(xy_post)
					response.write"</font></Div>"
					Response.write "<Script Language=JavaScript>alert('警告:请勿提交非法数据！');</Script>"
					Response.End
				End If
			Next
		Next
	End If
	If Request.QueryString<>"" Then
		For Each Xy_Get In Request.QueryString
			For Xy_Xh=0 To Ubound(Xy_Inf)
				If Instr(LCase(Request.QueryString(Xy_Get)),Xy_Inf(Xy_Xh))<>0 Then
					response.write "<BR><BR><font color=red>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交错误,请不要提交非法数据<br>"
					response.write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;你的所做所为已经被记录在案,"
					response.write "<br><br><br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;操作ＩＰ："&Request.ServerVariables("REMOTE_ADDR")&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;操作时间："&Now&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;操作页面："&Request.ServerVariables("URL")&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交方式：ＧＥＴ<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交参数："&xy_Get&"<br>"
					Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;提交数据："&Request(xy_Get)
					response.write"</font>"
					Response.write "<Script Language=JavaScript>alert('警告:请勿提交非法数据！');</Script>"
					Response.End
				End If
			Next
		Next
	End If

%>