ASP²úÉú²»Öظ´µÄËæ»úÊý£¨Ä£ÄâÏ´ÅÆ£©
¹¦ÄÜ×÷ÓãºASP²úÉú²»Öظ´µÄËæ»úÊý£¨Ä£ÄâÓÎÏ·Ï´ÅÆ£©
<%
function GetRnd(lowerNum,upperNum)
Dim unit,RndNum,Fun_X
unit = upperNum - lowerNum
Redim MyArray(unit)
For Fun_I=0 To unit
myArray(Fun_I)= lowerNum + Fun_I
Next
For Fun_I=0 To round(unit)
RndNum = getRndNumber(Fun_I,unit)
Fun_X = myArray(RndNum)
myArray(RndNum)=myArray(Fun_I)
myArray(Fun_I)=Fun_X
Next
GetRnd = myArray
end function
function getRndNumber(lowerbound,upperbound)
Randomize
getRndNumber=Int((upperbound-lowerbound+1)*Rnd+lowerbound)
end function
%>
Ïà¹ØÎĵµ£º
´´½¨Ò»¸ö¼òµ¥µÄASPÒ³Ãæ
ÔÚ·þÎñÆ÷¶Ë±àдµÄÎļþ index.asp £º
ÒÔÏÂΪÒýÓÃÄÚÈÝ£º
<%@LANGUAGE="JSCRIPT" CODEPAGE="65001"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"&g ......
VBSCRIPT µÄÊý¾ÝÀàÐÍ
VBSCRIPT Ö»ÓÐÒ»ÖÖÊý¾ÝÀàÐÍ£ºvariant £¬³ÌÐò¸ù¾ÝÉÏÏÂÎÄÀ´ÅÐ¶Ï variant ΪÊý×ÖÀàÐÍ»¹ÊÇ×Ö·û´®ÀàÐÍ¡£
ÒýºÅÄÚµÄÊý×Ö±»¿´³É×Ö·û´®£¬È磺a="12" £»
²»´øÒýºÅµ±È»¾ÍÊÇÊý×Ö£¬È磺b=13 ¡£
ʵÀý£º
ÒÔÏÂΪÒýÓÃÄÚÈÝ£º
<%@LANGUAGE="VBSCRIPT" CODEPAGE="65001"%>
<!DOCTYPE html PUBLIC "-//W3C// ......
1£ºSQL ×¢È룺
½â¾ö·½°¸£º
a. Õâ¸öÎÊÌâÖ÷ÒªÊÇÓÉÓÚ´«ÈëÌØÊâ×Ö·ûÒýÆðµÄÎÒÃÇ¿ÉÒÔÔÚ¶ÔÊäÈëµÄÓû§ÃûÃÜÂë½øÈë¹ýÂËÌØÊâ×Ö·û´¦Àí¡£
b. ʹÓô洢¹ý³Ìͨ¹ý´«Èë²ÎÊýµÄ·½·¨¿É½â¾ö´ËÀàÎÊÌ⣨עÒ⣺ÔÚ´æ´¢¹ý³ÌÖв»¿ÉʹÓÃÆ´½ÓʵÏÖ£¬²»È»ºÍûÓô洢¹ýºÍÊÇÒ»ÑùµÄ£©¡£
2. XSS£¨¿çÕ¾½Å±¾¹¥»÷£©£º
½â¾ö·½°¸£º
¡¡¡¡a. ͨ¹ýÔÚ Page Ö¸Áî»ò Å ......
½ñÌìÔÚÍøÉÏÕÒÁ˺þùØÓÚASPÉú³É¾²Ì¬Ò³µÄ´úÂë ×î¶àµÄ¾ÍÊÇ FSO·½·¨£¬Ä£°å·½·¨£¬µ«²»ÖªµÀ£¬ÎÒ°Ñ´úÂëÄÃÀ´Ö®ºó¶¼²»ºÃÓ㬾ÍÊÇÌṩÏÂÔصÄѹËõ°üÀïÃæдºÃµÄÎÒÔËÐж¼ÊÇÓдíÎ󡣡£
²»¹ý»ÆÌì²»¸ºÓÐÐÄÈË£¬ÎÒÖÕÓÚÕÒµ½Ò»¸öµ¥Ò³Éú³É¾²Ì¬µÄ·½·¨£¬ÄóöÀ´¸ø´ó¼Ò·ÖÏí
<!-- ======================== Éú³É¾²Ì¬·½·¨ ================ ......
