ajax °²È«¶ÁÊé±Ê¼Ç
1.ÅÖ¿Í»§¶ËµÄ²¿Êð·½°¸
java web start
.net clickonce
2.ÈëÇÖ˼·
HTTPÊý¾ÝµÄ¼Ç¼->·¢ÏÖajax¿ÉÄÜ´æÔÚÎÊÌâµÄµã->ÈƹýjavascriptµÄһЩÏÞÖƺÍÆƽâjavascript»ìÏý´úÂë->ÕÒµ½jsonµÄsql×¢Èëµã->ÕÒµ½ajax¿ÉÒÔÌí¼Ó¹ÜÀíÔ±µÄ»Øµ÷º¯ÊýºÍjsonÏà¹Ø
3.sql×¢ÈëС¼¼ÇÉ
union select name from sysobjects where xtype='U'Ö»ÒªµÃµ½ÏàͬµÄ×Ö¶Î
4.¿Í»§¶ËÈ¡ÏûcookieÈÏÖ¤²»ÊDZ£Ö¤ÁË°²È«£¬¶øÊÇ°ÑÍþвÓÖÎÞÐÎÀ©´óÁË
5.ajax¹¥»÷²ãÃæ°üÀ¨ÁË´«Í³µÄWEB©¶´+WEB SERIVCES©¶´¡£
6. ±¨Í·ÖпÉÄÜ´æÔÚΣÏÕµÄ×¢Èë
7.RSS×¢Èë(Íⲿ×ÊÁÏ¿ÉÒԲο¼ black hat 2006ÄêRobert Auger
http://www.cgisecurity.com/papers/RSS-Security.pptµÄÎÄÕÂ)
8.jsonµÄ©¶´±ØÐëÒªÑéÖ¤ÐòÁл¯Êý¾Ý(Íⲿ²Î¿¼×ÊÁÏblack hat 2005 Attack web Services: The next Generation of vulneralbe enterprise appsÏÂÔصØÖ·http://www.blackhat.com/presentations/bh-usa-05/bh-us-05-stamos.pdf
ºÍHackInTheBoxµÄpentesting java/j2ee)
9.douglas·ÀÓùJsonµÄeval×¢Èë
Ïà¹ØÎĵµ£º
xmlHTTP¶ÔÏóµÄÎÊÌâ Ç°Á½Ìì°²×°ÁËIE7.0,½ñÌìÈ´·¢ÏÖÇ°¼¸ÌìÓÃajax¿ª·¢µÄй¦Äܾ¹È»ÎÞ·¨Ê¹ÓÃ,¾¹ý±¾ÈËϬÀûµÄÄ¿¹â´ó·¶Î§µÄËÑË÷,ÖÕÓÚÕÒµ½Á˽â¾ö°ì·¨,ÔÒòÊÇIE7.0±ÈIE6.0¶àÁ˱¾µØXMLHTTPÖ§³Ö¡£ËùÒÔ½â¾ö·½·¨Ö®Ò»¾ÍÊǵã»÷¡°¹¤¾ß¡±->¡°InternetÑ¡Ï->¡°¸ß¼¶¡±£¬ÔÚ¡°°²È«¡±½ÚµãÏÂÕÒµ½¡°ÆôÓñ¾»úXMLHTTPÖ§³Ö¡±£¬¸ÃÑ¡ÏîĬÈÏÊǹ³Ñ¡£¬½ ......
¹«Ë¾×î½ü¸øÎÒÒ»¸öÈÎÎñ£º°ÑÒ»¸öÓÃiframe×öµÄÁôÑÔ°å¸ÄдÓÃAjax×ö£¬ÕâÑù×öµÄÔÒòÊÇ£º¶ÔËÑË÷ÒýÇæµÄÓÅ»¯¡£ËäÈ»ºÜÔç¾ÍÖªµÀAjax¿ÉÒÔ×ö¾Ö²¿Ë¢Ð£¬µ«ÒòΪ×Ô¼ºÊǸձÏÒµÈëÖ°µÄ²ËÄñ£¬½ö½öÊÇÖªµÀÓÐÕâô¸ö¼¼Êõ¿ÉÒÔ×öÕâÑùÒ»¹¦ÄܶøÒÑ¡£Ò»±ßѧһ±ß×ö¡£ÏÖÔÚÕ⹦ÄÜ»¹Ã»ÍêȫŪºÃ£¬ÏÈ×ܽáÏÂ˼·ÒÔ±ã¸üºÃµÄѧϰ£º
ÒµÎñÂß¼£ºÔÚÏßÑÐÌֻᣬÌáÎÊÕßÒ³ ......
ÔÚ ASP .NET µÄ AJAX ¿Ø¼þÖÐ TabContainer µÄ CSS ÑùʽµÄ±àд¾ßÓÐÒ»¶¨µÄ¸ñʽ¹æ·¶¼°ÃüÃû¹æÔò£¬ÈçÏÂͼ£º
¾ßÌåµÄ CSS ÑùʽµÄ±àдΪ£º
.ajax_tab_menu .ajax__tab_header /*ÕûÌå°´Å¥µ×Ñùʽ*/
{
font-family:ËÎÌå;
height:29px;
font-size:12px;
background:#181c1f repeat-x bottom;
}
.ajax_tab_menu .ajax__tab ......
