www.gusucode.com > 迅雷看看小偷电影程序源码+后台(首页去弹窗) > 迅雷看看小偷电影程序源码+后台(首页去弹窗)\code\sql.asp

    <%

Sub UrlParamtersCheck() 
Dim PostData,GetData,CookieData,FilterKey,FilterKeyArray,i 
FilterKey = "'|cast|varchar|and|exec|insert|select|update|count|*|%|chr|mid|master|truncate|char|declare|net user|xp_cmdshell|/add|exec%20master.dbo.xp_cmdshell|net localgroup administrators|asc|:|""|drop|truncate|from|%" 
FilterKeyArray = split(FilterKey,"|") 
If Request.Form <>"" Then 
  For Each PostData In Request.Form 
  For i=0 To Ubound(FilterKeyArray) 
    If Instr(LCase(Request.Form(PostData)),FilterKeyArray(i)) <>0 Then 
    Response.Write "" 
    Response.End 
    End If 
  Next 
  Next 
End If 
If Request.QueryString <>"" Then 
  For Each GetData In Request.QueryString 
  For i=0 To Ubound(FilterKeyArray) 
  If Instr(LCase(Request.QueryString(GetData)),FilterKeyArray(i)) <>0 Then 
    Response.Write "" 
    Response.End 
  End If 
  Next 
  Next 
End If 
If Request.Cookies <>"" Then 
  For Each CookieData In Request.Cookies 
  For i=0 To Ubound(FilterKeyArray) 
    If Instr(LCase(UrlDecode(Request.Cookies(CookieData))),FilterKeyArray(i)) <>0 Then 
    Response.Write "" 
    Response.End 
    End If 
  Next 
  Next 
End If 
End Sub 
%>