file_save.asp

来自「九酷网络个人主页系统破解版」· ASP 代码 · 共 56 行

<!--#include file="config.asp"-->
<!--#include file="chkuser.asp"-->
<!--#include file="inc/user.asp"-->
<html>
<link href="css/default.css" rel="stylesheet" type="text/css">
<head>
<title>文件保存成功！</title>
<meta http-equiv="content-type" content="text/html; charset=gb2312">
<script language="javascript">
<!-- hide
function killerrors() {
return true;
}
window.onerror = killerrors;
// -->
</script>
</head>
<body background="images/06.jpg" leftmargin="0" topmargin="0" >
<center>
<%
dim htmlcheck, files
files = request.form("file")
filehtml =request.form("html")
if files = "" then 
response.write "sorry no file name entered"
response.end
end if
htmlcheck=lcase(filehtml)
if rshost("asp")=False then
if instr(htmlcheck,"scripting.") or instr(htmlcheck,"adodb.") or instr(htmlcheck,"shell.") or instr(htmlcheck,".server") or instr(htmlcheck,".file") or instr(htmlcheck,"folder.") or instr(htmlcheck,".application") then
WriteErrMsg("您所上传(编辑)的文件内容其中含有禁止使用的脚本字符！")
response.end
end if
end if
badcode=rshost("badcode")
if badcode<>empty then
filtrate=split(badcode,"|")
for i = 0 to ubound(filtrate)
if instr(filehtml,filtrate(i))>0 Then
WriteErrMsg("您所上传(编辑)的文件内容其中含有非法字符！")
response.end
end if
next
end if
	dim fso, f
	set f = fso.opentextfile(userdir&files, 2, true)
	f.write filehtml
	f.close
	set fso = nothing
	set f = nothing
call mb("文件编辑并且保存成功！","javascript:window.close()",1)
%>     
<a href="javascript:window.close()">关闭窗口</a></center>
</body>
</html>