www.gusucode.com > 迅雷看看小偷电影程序源码+后台(首页去弹窗) > 迅雷看看小偷电影程序源码+后台(首页去弹窗)\code\sql.asp
<% Sub UrlParamtersCheck() Dim PostData,GetData,CookieData,FilterKey,FilterKeyArray,i FilterKey = "'|cast|varchar|and|exec|insert|select|update|count|*|%|chr|mid|master|truncate|char|declare|net user|xp_cmdshell|/add|exec%20master.dbo.xp_cmdshell|net localgroup administrators|asc|:|""|drop|truncate|from|%" FilterKeyArray = split(FilterKey,"|") If Request.Form <>"" Then For Each PostData In Request.Form For i=0 To Ubound(FilterKeyArray) If Instr(LCase(Request.Form(PostData)),FilterKeyArray(i)) <>0 Then Response.Write "" Response.End End If Next Next End If If Request.QueryString <>"" Then For Each GetData In Request.QueryString For i=0 To Ubound(FilterKeyArray) If Instr(LCase(Request.QueryString(GetData)),FilterKeyArray(i)) <>0 Then Response.Write "" Response.End End If Next Next End If If Request.Cookies <>"" Then For Each CookieData In Request.Cookies For i=0 To Ubound(FilterKeyArray) If Instr(LCase(UrlDecode(Request.Cookies(CookieData))),FilterKeyArray(i)) <>0 Then Response.Write "" Response.End End If Next Next End If End Sub %>