asp.netÖеĹÖÒìÎÊÌ⣿
asp.netÖÐAÁ´½Ó´«ÖÐÎÄÖµ£¬½ÓÊÕʱÂÒÂ룡
ÔÚÓÐЩµçÄÔÉÏÄÜÕý³£½ÓÊÕ£¬µ«ÓÐЩµçÄÔÉÏÈ´²»ÄÜÕý³£½ÓÊÕ£¬
ÇëÎʸ÷λÓÐûÓÐʲô·½·¨£¿
ÓÃsession£¬»òÕ߸ü¸Ä±àÂ룬
default.aspx
C# code:
this.Redirect("hello.aspx?text="+this.this.Server.HtmlEncode("ÄãºÃ"));
hello.aspx
[code=C#
var text = this.this.Server.HtmlDecode(this.Request.QueryString["text"]);
[/code]
default.aspx
C# code:
this.Redirect("hello.aspx?text="+this.this.Server.HtmlEncode("ÄãºÃ"));
hello.aspx
C# code:
string text = this.Server.HtmlDecode(this.Request.QueryString["text"]);
UrlEncode
UrlDecode
or
ÉèÖÃÕ¾µãµÄ±àÂëÀàÐÍΪgb2312
ËüÖ»ÊÇ×îºóÒ»¸ö×ÖÂÒÂ룬ǰÃæµÄ²»»áÂÒÂë
ÉèÖñàÂë
5Â¥µÄÁ½ÖÖ·½·¨¶¼¿ÉÒÔ
ÉÏÃ涼»Ø´ðÁË
Ïà¹ØÎÊ´ð£º
C# code:
string sql = "select * from userinfo where uname = '" + uname + "' and upassword = '" + upassword + "'";
//ºÍ
string sql = "select * from userinfo where ......
·þÎñÆ÷·ÅÖÃÔÚÄÚÍø¡£ÍøÕ¾Ö»ÄÜÊÇͨ¹ýÄÚ²¿ÍøÂç·ÃÎʵġ£ÔõÑù»ñÈ¡¿Í»§¶Ë¼ÆËã»úµÄÓòºÍ¼ÆËã»úÃû£¿
RT£¬Ð»Ð»ÁË¡£
Request.UserHostName
Request.UserHostAddress
Õâ¸öÊÔ¹ýÁ˲»ÐС£
ÈçºÎÔÚ.NETÖлñÈ¡µçÄÔÃû£ ......
ÎÒÓÃÏÂÃæµÄ·½Ê½µ¯³ö¶Ô»°¿ò
RegisterStartupScript("js", " <script>alert('¶Ô²»ÆðÄúûÓиÃȨÏÞ') </script>");
È»ºóÎÒÔÙË¢ÐÂÒ³Ã棬ҳÃæ»áÌáʾ£º¡°²»ÖØз¢ËÍÐÅÏ¢ ......
ÎÒ×öÁËÒ»¸öÍøÕ¾·ÅÔÚ·þÎñÆ÷ÉÏ£¬Ç°¼¸Ì춼¿ÉÒÔ·ÃÎʲ¢ÇÒËٶȻ¹ÐУ¬Ôõôµ½½ñÌì·ÃÎÊËÙ¶ÈÌØÂý£¬µ½×îºÃ¶¼·ÃÎʲ»ÁËÀ²¡£Çë¸ßÊÖÖ¸½Ì
ÄÇÒ²Ö»ÄÜ˵·þÎñÆ÷µÄÎÊÌâ¡£
Èç¹û²»ÊÇÔÚ·þÎñÆ÷ÉÏ ËÙ¶ÈÔõôÑùÄØ
Ò²ÐíÊÇÄãµÄ·þÎ ......
select top 12 * from Product where [id] not in (select top 12 [id] from Product)
ÕâÑù¿ÉÒÔ·ÖÒ³£¬µ«ÊÇÎÒÔÚºóÃæÏë¼Ó¸öÌõ¼þ
select top 12 * from Product where [id] not in (select top 12 [id] from Prod ......
