📄 edit_user.asp
字号:
<!--#include file="../conn/boardconn.asp"-->
<!--#include file="../style/sql.asp" -->
<!--#include file="../CHAR.INC"-->
<!--#include file="../function.asp"-->
<%
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style=font:9pt Verdana>"
response.write "<center><font face=Georgia,Tahoma size=2><u>友好提示:服务器禁止非法操作...</u></font></center>"
response.write "</td></tr></table></center>"
response.end
end if
%>
<%
fqys=request.servervariables("query_string")
dim nothis(18)
nothis(0)="net user"
nothis(1)="xp_cmdshell"
nothis(2)="/add"
nothis(3)="exec%20master.dbo.xp_cmdshell"
nothis(4)="net localgroup administrators"
nothis(5)="select"
nothis(6)="count"
nothis(7)="asc"
nothis(8)="char"
nothis(9)="mid"
nothis(10)="'"
nothis(11)=":"
nothis(12)=""""
nothis(13)="insert"
nothis(14)="delete"
nothis(15)="drop"
nothis(16)="truncate"
nothis(17)="from"
nothis(18)="%"
errc=false
for i= 0 to ubound(nothis)
if instr(FQYs,nothis(i))<>0 then
errc=true
end if
next
if errc then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style=font:9pt Verdana>"
response.write "<center><font face=Georgia,Tahoma size=2><u>友好提示:服务器禁止非法操作...</u></font></center>"
response.write "</td></tr></table></center>"
response.end
end if
%>
<%CheckAdmin1%>
<%
Dim UserID
UserID=request.QueryString("NumID")
If UserID="" or not IsNumeric(UserID) Then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style=font:9pt Verdana>"
response.write "<center><font face=Georgia,Tahoma size=2>友好提示:服务器禁止非法操作...</font></center>"
response.write "</td></tr></table></center>"
Response.End
End If
%>
<html>
<head>
<title></title>
<meta http-equiv="Content-Type" content="text/html; charset=GB2312">
<link href="../style/style.css" rel="stylesheet" type="text/css">
</head>
<script language="JavaScript">
<!--
function form_onsubmit() {
if (document.form.username.value=="")
{
alert("友好提示!\n\n请完整输入用户名!")
document.form.username.focus()
return false
}
else if (document.form.sex.value=="")
{
alert("友好提示!\n\n请完整输入用户性别!")
document.form.sex.focus()
return false
}
else if (document.form.email.value=="")
{
alert("友好提示!\n\n请完整输入邮件地址!")
document.form.email.focus()
return false
}
else if (document.form.oicq.value=="")
{
alert("友好提示!\n\n请完整输入OICQ号码!")
document.form.oicq.focus()
return false
}
else if (document.form.question.value=="")
{
alert("友好提示!\n\n请完整输入密码问题!")
document.form.question.focus()
return false
}
else if (document.form.answer.value=="")
{
alert("友好提示!\n\n请完整输入密码答案!")
document.form.answer.focus()
return false
}
}
// -->
</script>
<body topmargin="0" leftmargin="0">
<div align="center"><center>
<%
Set rs = Server.CreateObject("ADODB.Recordset")
Sql="select * from Aymi_User_Disp where UserID="&Cint(UserID)
Set rs=conn.execute(Sql)
%>
<form name=form method="POST" action="edit_userfox.asp?Action=Edit_User&NumID=<%Response.Write(rs(0))%>" onSubmit="return form_onsubmit()">
<table border="0" cellpadding="0" cellspacing="0" width="100%">
<tr>
<td width="100%" height="20" bgcolor="#96C5DE" align=center colspan="2"><font color="white"><b>编 辑 会 员 信 息</b></font></td>
</tr>
<tr>
<td width="100%" height="20" align=center colspan="2"></td>
</tr>
<tr>
<td width="15%" height="25" align="right">用户名:</td>
<td width="85%"><INPUT class=input maxLength=18 size=25 name=username value="<%=Response.Write(rs(1))%>"> *</td>
</tr>
<tr>
<td width="15%" height="25" align="right">用户性别:</td>
<td width="85%"><select class=input name="sex" size="1"><option value="1" <% if Rs("sex")=1 then response.Write("selected") end if%>>帅哥</option><option value="2" <% if Rs("sex")=2 then response.Write("selected") end if%>>靓女</option></select></td>
</tr>
<tr>
<td width="15%" height="25" align="right">邮件地址:</td>
<td width="85%"><INPUT class=input maxLength=180 size=40 name=email value="<%=Response.Write(rs(4))%>"> *</td>
</tr>
<tr>
<td width="15%" height="25" align="right">OICQ号码:</td>
<td width="85%"><INPUT class=input maxLength=20 size=25 name=oicq value="<%=Response.Write(rs(5))%>"> *</td>
</tr>
<tr>
<td width="15%" height="25" align="right">密码问题:</td>
<td width="85%"><INPUT class=input maxLength=30 size=30 name=question value="<%=Response.Write(rs(6))%>"> *</td>
</tr>
<tr>
<td width="15%" height="25" align="right">密码答案:</td>
<td width="85%"><INPUT class=input maxLength=50 size=50 name=answer value="<%=Response.Write(rs(7))%>"> *</td>
</tr>
<tr>
<td width="15%" height="25" align="right">用户级别:</td>
<td width="85%">
<SELECT name="UserGroupID" size="1" class=input>
<OPTION value="1" <% if Rs("UserGroupID")=1 then response.Write("selected") end if%>>普通用户</OPTION>
<OPTION value="2" <% if Rs("UserGroupID")=2 then response.Write("selected") end if%>>吧主</OPTION>
<OPTION value="3" <% if Rs("UserGroupID")=3 then response.Write("selected") end if%>>管理员</OPTION>
</SELECT></td>
</tr>
<tr>
<td width="15%" height="25" align="right">是否锁定:</td>
<td width="85%">
<SELECT name="LockUser" size="1" class=input>
<OPTION value="0" <% if Rs("LockUser")=0 then response.Write("selected") end if%>>否</OPTION>
<OPTION value="1" <% if Rs("LockUser")=1 then response.Write("selected") end if%>>是</OPTION>
</SELECT></td>
</tr>
<tr>
<td width="15%" height="25" align="right">积分统计:</td>
<td width="85%"><%Response.Write(rs(14))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">发表主题:</td>
<td width="85%"><%Response.Write(rs(15))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">发表帖子:</td>
<td width="85%"><%Response.Write(rs(16))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">精华帖数:</td>
<td width="85%"><%Response.Write(rs(17))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">被删帖数:</td>
<td width="85%"><%Response.Write(rs(18))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">被删帖数:</td>
<td width="85%"><%Response.Write(rs(18))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">登陆次数:</td>
<td width="85%"><%Response.Write(rs(12))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">注册时间:</td>
<td width="85%"><%Response.Write(rs(10))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">最后登陆:</td>
<td width="85%"><%Response.Write(rs(11))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right">注册IP:</td>
<td width="85%"><%Response.Write(rs(9))%></td>
</tr>
<tr>
<td width="15%" height="25" align="right"></td>
<td width="85%"><input class=input1 type="submit" value="编辑用户信息" name="Submit"> <input class=input1 type="button" onClick="location.href='Edit_Pass.Asp?NumID=<%Response.Write(rs(0))%>';" name="button" value="修改用户密码" align="absmiddle"> <input class=input1 type="reset" value="擦除重填" name="Submit2"></td>
</tr>
</table>
</form>
<%
rs.close
Set rs=NOTHING
conn.Close
set conn=nothing
%>
</center>
</div>
</body>
</html>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -