Asp NetÍøÕ¾°²È«

1£ºSQL ×¢È룺
½â¾ö·½°¸£º
a. Õâ¸öÎÊÌâÖ÷ÒªÊÇÓÉÓÚ´«ÈëÌØÊâ×Ö·ûÒýÆðµÄÎÒÃÇ¿ÉÒÔÔÚ¶ÔÊäÈëµÄÓû§ÃûÃÜÂë½øÈë¹ýÂËÌØÊâ×Ö·û´¦Àí¡£
b. ʹÓô洢¹ý³Ìͨ¹ý´«Èë²ÎÊýµÄ·½·¨¿É½â¾ö´ËÀàÎÊÌ⣨עÒ⣺ÔÚ´æ´¢¹ý³ÌÖв»¿ÉʹÓÃÆ´½ÓʵÏÖ£¬²»È»ºÍûÓô洢¹ýºÍÊÇÒ»ÑùµÄ£©¡£
2. XSS£¨¿çÕ¾½Å±¾¹¥»÷£©£º
½â¾ö·½°¸£º
¡¡¡¡a. ͨ¹ýÔÚ Page Ö¸Áî»ò ÅäÖýÚÖÐÉèÖà validateRequest="false" ½ûÓÃÇëÇóÑéÖ¤£¬È»ºóÎÒÃǶÔÓû§Ìá½»µÄÊý¾Ý½øÐÐ HtmlEncode£¬±àÂëºóµÄ¾Í²»»á³öÏÖÕâÖÖÎÊÌâÁË£¨ASP.NET ÖбàÂë·½·¨£ºServer.HtmlEncode(string)£©¡£
¡¡¡¡b. µÚ¶þÖÖÊǹýÂËÌØÊâ×Ö·û£¬ÕâÖÖ·½·¨¾Í²»Ì«ÌᳫÁË£¬Èç¹ûÓû§ÏëÊäÈëСÓںţ¨<£©Ò²»á±»¹ýÂ˵ô
3.CSRF£¨¿çÕ¾µãÇëÇóαÔ죩£º
½â¾ö·½°¸£º
¡¡¡¡ÐÞ¸ÄÐÅϢʱÌí¼ÓÑéÖ¤Âë»òÌí¼Ó Session ÁîÅÆ£¨ASP.NETÖÐÒѾ­Ìṩһ¸ö×Ô¶¯·À·¶µÄ·½·¨£¬¾ÍÊÇÓÃÒ³ÃæÊôÐÔ ViewStateUserKey¡£ÔÚPage_Init·½·¨ÖÐÉèÖÃÆäÖµ£ºthis.ViewStateUserKey = Session.SessionID£©¡£
4. ÎļþÉÏ´«£º
½â¾ö·½°¸£º
ÔÚÓû§µÇ¼ʱ¼ÓÈëÊÇ·ñ¿ÉÉÏ´«ÎļþµÄ Session ±êÖ¾¡£Æäʵ Fckeditor ÒѾ­Ð´ºÃÁË¡£Ö±½Ó°ÑÑéÖ¤º¯Êý CheckAuthentication() ÖеÄ×¢ÊͶÎÖÐCheckAuthentication()
return ( Session[ "IsAuthorized" ] != null && (bool)Session[ "IsAuthorized" ] == true );
 
¡¡¡¡×¢ÊÍÈ¥µô¡£ÔڵǼ³É¹¦¼ÓÈëµÇ¼³É¹¦ JS ´úÂë
Session[“IsAuthorized”] = true;
£±£ºSQL ×¢Èë
      ÒýÆðÔ­Òò£º
      ÆäʵÏÖÔںܶàÍøÕ¾Öж¼´æÔÚÕâÖÖÎÊÌâ¡£¾ÍÊdzÌÐòÖÐÖ±½Ó½øÐÐSQLÓï¾äÆ´½Ó¡£¿ÉÄÜÓÐЩ¶ÁÕß²»Ì«Ã÷°×¡£ÏÂÃæͨ¹ýÒ»¸öµÇ¼ʱ¶ÔÓû§ÑéÖ¤À´ËµÃ÷£º
code:
     Ñé֤ʱµÄsqlÓï¾ä: select * from where user='"+txtUsername.Text+"' and pwd='"+txtPwd.Text+"'
ÕâÊÇÒ»¶Î´ÓÊý¾Ý¿âÖвéѯÓû§£¬¶ÔÓû§Ãû£¬ÃÜÂëÑéÖ¤¡£
¿´ÉÏÈ¥ºÃÏóûÓÐʲôÎÊÌ⣬µ«ÊÇʵ¼ÊÕâÀïÃædz²Ø×ÅÎÊÌ⣬Óû§Ãû£ºadmin ÃÜÂ룺 admin£¬
select * from where user='admin' and pwd='admin'
Èç¹ûÓû§ºÍÃÜÂëÕýÈ·¾Í¿ÉͨÑéÖ¤¡£Èç¹ûÎÒÓû§Ãû£ºasdf' or 1=1 -- ÃÜÂ룺ËæÒâÊäÈë.
ÎÒÃÇÔÙÀ´¿´Óï¾ä£º
select * from where user=‘asdf' or 1=1 -- and pwd=''
Ö´Ðк󿴵½Ê²Ã´£¿ÊDz»ÊÇËùÓмǼ£¬Èç¹û³ÌÐòÖ»ÊǼòµ¥ÅжϷµ»ØµÄÌõÊý£¬ÕâÖÖ·½·¨¾Í¿ÉÒÔͨÑéÖ¤¡£