推薦:Cookies 欺騙漏洞的防範(vbs js 實現)一、攻擊原理Cookies 欺騙主要利用當前網絡上一些用戶管理系統將用戶登錄信息儲存在Cookies 中這一不安全的做法進行攻擊,其攻擊方法相對於SQL 注入漏洞等漏洞來說相對要困難&rdquo
以下為引用的內容: <%'' ''調用例子 'Dim int_RPP,int_Start,int_showNumberLink_,str_nonLinkColor_,toF_,toP10_,toP1_,toN1_,toN10_,toL_,showMorePageGo_Type_,cPageNo 'int_RPP=2 '設置每頁顯示數目 'int_showNumberLink_=8 '數字導航顯示數目 'showMorePageGo_Type_ = 1 '是下拉菜單還是輸入值跳轉,當多次調用時只能選1 'str_nonLinkColor_=#999999 '非熱鏈接顏色 'toF_=<font face=webdings>9</font> '首頁 'toP10_= <font face=webdings>7</font> '上十 'toP1_= <font face=webdings>3</font> '上一 'toN1_= <font face=webdings>4</font> '下一 'toN10_= <font face=webdings>8</font> '下十 'toL_=<font face=webdings>:</font> '尾頁 '============================================ '這段代碼一定要在VClass_Rs.Open 與for循環之間 ' Set VClass_Rs = CreateObject(G_FS_RS) ' VClass_Rs.Open This_Fun_Sql,User_Conn,1,1 ' IF not VClass_Rs.eof THEN ' VClass_Rs.PageSize=int_RPP ' cPageNo=NoSqlHack(Request.QueryString(Page)) ' If cPageNo= Then cPageNo = 1 ' If not isnumeric(cPageNo) Then cPageNo = 1 ' cPageNo = Clng(cPageNo) ' If cPageNo<=0 Then cPageNo=1 ' If cPageNo>VClass_Rs.PageCount Then cPageNo=VClass_Rs.PageCount ' VClass_Rs.AbsolutePage=cPageNo ' FOR int_Start=1 TO int_RPP '' '加循環體顯示數據 '' ' VClass_Rs.MoveNext ' if VClass_Rs.eof or VClass_Rs.bof then exit for ' NEXT ' END IF '============================================ 'response.Write <p>& fPageCount(VClass_Rs,int_showNumberLink_,str_nonLinkColor_,toF_,toP10_,toP1_,toN1_,toN10_,toL_,showMorePageGo_Type_,cPageNo) '' '********************************************************* ' 目的:分頁的頁面參數保持 ' 提交查詢的一致性 ' 輸入:moveParam:分頁參數 ' removeList:要移除的參數 ' 返回:分頁Url '********************************************************* Function PageUrl(moveParam,removeList) dim strName dim KeepUrl,KeepForm,KeepMove removeList=removeList&,&moveParam KeepForm= For Each strName in Request.Form '判斷form參數中的submit、空值 if not InstrRev(,&removeList&,,,&strName&,, -1, 1)>0 and Request.Form(strName)<> then KeepForm=KeepForm&&&strName&=&Server.URLencode(Request.Form(strName)) end if removeList=removeList&,&strName Next KeepUrl= For Each strName In Request.QueryString If not (InstrRev(,&removeList&,,,&strName&,, -1, 1)>0) Then KeepUrl = KeepUrl & & & strName & = & Server.URLencode(Request.QueryString(strName)) End If Next KeepMove=KeepForm&KeepUrl If (KeepMove <> ) Then KeepMove = Right(KeepMove, Len(KeepMove) - 1) KeepMove = Server.HTMLEncode(KeepMove) & & End If 'PageUrl = replace(Request.ServerVariables(URL),/Search.asp,/Search.html) & ? & KeepMove & moveParam & = PageUrl = ? & KeepMove & moveParam & = End Function Function fPageCount(Page_Rs,showNumberLink_,nonLinkColor_,toF_,toP10_,toP1_,toN1_,toN10_,toL_,showMorePageGo_Type_,Page) Dim This_Func_Get_Html_,toPage_,p_,sp2_,I,tpagecount Dim NaviLength,StartPage,EndPage This_Func_Get_Html_ = : I = 1 NaviLength=showNumberLink_ if IsEmpty(showMorePageGo_Type_) then showMorePageGo_Type_ = 1 tpagecount=Page_Rs.pagecount If tPageCount<1 Then tPageCount=1 if not Page_Rs.eof or not Page_Rs.bof then toPage_ = PageUrl(Page,submit,GetType,no-cache,_) if Page=1 then This_Func_Get_Html_=This_Func_Get_Html_& <font color=&nonLinkColor_& title=首頁>&toF_&</font> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_&1 title=首頁>&toF_&</a> &vbNewLine End If if Page<NaviLength then StartPage = 1 else StartPage = fix(Page / NaviLength) * NaviLength end if EndPage=StartPage NaviLength-1 If EndPage>tPageCount Then EndPage=tPageCount If StartPage>1 Then This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_& Page - NaviLength & title=上&int_showNumberLink_&頁>&toP10_&</a> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <font color=&nonLinkColor_& title=上&int_showNumberLink_&頁>&toP10_&</font> &vbNewLine End If If Page <> 1 and Page <>0 Then This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_&(Page-1)& title=上一頁>&toP1_&</a> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <font color=&nonLinkColor_& title=上一頁>&toP1_&</font> &vbNewLine End If For I=StartPage To EndPage If I=Page Then This_Func_Get_Html_=This_Func_Get_Html_& <b>&I&</b> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_&I&> &I& </a> &vbNewLine End If If I<>tPageCount Then This_Func_Get_Html_=This_Func_Get_Html_& vbNewLine Next If Page <> Page_Rs.PageCount and Page <>0 Then This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_&(Page 1)& title=下一頁>&toN1_&</a> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <font color=&nonLinkColor_& title=下一頁>&toN1_&</font> &vbNewLine End If If EndPage<tpagecount Then This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_& Page NaviLength & title=下&int_showNumberLink_&頁>&toN10_&</a> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <font color=&nonLinkColor_& title=下&int_showNumberLink_&頁>&toN10_&</font> &vbNewLine End If if Page_Rs.PageCount<>Page then This_Func_Get_Html_=This_Func_Get_Html_& <a href=&toPage_&Page_Rs.PageCount& title=尾頁>&toL_&</a> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& <font color=&nonLinkColor_& title=尾頁>&toL_&</font> &vbNewLine End If If showMorePageGo_Type_ = 1 then Dim Show_Page_i Show_Page_i = Page 1 if Show_Page_i > tPageCount then Show_Page_i = 1 This_Func_Get_Html_=This_Func_Get_Html_& <input type=text size=4 maxlength=10 name=Func_Input_Page onmouseover=this.focus(); onfocus=this.value='&Show_Page_i&'; onKeyUp=value=value.replace(/[^1-9]/g,'') onbeforepaste=clipboardData.setData('text',clipboardData.getData('text').replace(/[^1-9]/g,''))> &vbNewLine _ &<input type=button value=Go onmouseover=Func_Input_Page.focus(); onclick=javascript:var Js_JumpValue;Js_JumpValue=document.all.Func_Input_Page.value;if(Js_JumpValue=='' !isNaN(Js_JumpValue)) location='&topage_&' Js_JumpValue; else location='&topage_&1';> &vbNewLine Else This_Func_Get_Html_=This_Func_Get_Html_& 跳轉:<select NAME=menu1 onChange=var Js_JumpValue;Js_JumpValue=this.options[this.selectedIndex].value;if(Js_JumpValue!='') location=Js_JumpValue;> for i=1 to tPageCount This_Func_Get_Html_=This_Func_Get_Html_& <option value=&topage_&i if Page=i then This_Func_Get_Html_=This_Func_Get_Html_& selected style='color:#0000FF' This_Func_Get_Html_=This_Func_Get_Html_& >第&cstr(i)&頁</option> &vbNewLine next This_Func_Get_Html_=This_Func_Get_Html_& </select> &vbNewLine End if This_Func_Get_Html_=This_Func_Get_Html_& p_&sp2_& 每頁<b>&Page_Rs.PageSize&</b>個記錄,現在是:<b><span class=tx>&sp2_&Page&</span>/&tPageCount&</b>頁,共<b><span id='recordcount'>&sp2_&Page_Rs.recordCount&</span></b>個記錄。 else '沒有記錄 end if fPageCount = This_Func_Get_Html_ End Function %> |
分享:用ASP尋找到真實IP地址的方法眾所周知,得到IP地址的方法是以下為引用的內容: <%=Request.ServerVariables(REMOTE_ADDR)%>