网站被注入了,寻求解决办法 网站被注入了,寻求解决办法.打开网页瑞星监控就提示有木马病毒.客户经常丢失一些帐号急! 解决方案 » 免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货 /// <summary> /// 替换非法字符 (杨军 06.9.6-11:52am) /// </summary> /// <param name="Temp">需要检查的字符串</param> /// <returns>string</returns> public string ReplaceDangerCode (string Temp) { Temp = Temp.Replace("'",""); Temp = Temp.Replace("\"",""); Temp = Temp.Replace("or",""); Temp = Temp.Replace("&",""); Temp = Temp.Replace("*",""); Temp = Temp.Replace("select ",""); Temp = Temp.Replace("insert ",""); Temp = Temp.Replace("delete ",""); Temp = Temp.Replace("count(",""); Temp = Temp.Replace("drop table ",""); Temp = Temp.Replace("update ",""); Temp = Temp.Replace("truncate ",""); Temp = Temp.Replace("asc(",""); Temp = Temp.Replace("mid(",""); Temp = Temp.Replace("char(",""); Temp = Temp.Replace("xp_cmdshell",""); Temp = Temp.Replace("exec master",""); Temp = Temp.Replace("net localgroup administrators",""); Temp = Temp.Replace(" and ",""); Temp = Temp.Replace("net user",""); Temp = Temp.Replace(" or ",""); return Temp; } 建议还是不要勇拼接sql语句的方式 先关闭站点,好好检查木马...装个sql防注系统..就好了.. 求完美实现的ListView,后台代码数据绑定,分页,排序。 数据绑定方法 求帮忙 db 2 的 考试 Repeater如何在第N条记录后插入其他内容? 如何获取asp.net服务器的有效周期 DataList中的删除按钮里怎么绑定script 是怎麽把label.text的屬性邦定到<a herf=1.aspx?id=要幫定的控鍵加值的? 如何实现视频 关于多页面操作。 [求助]在ASP的站点底下建立ASP.NET的虚拟目录出现下面的错误!郁闷了(急!) orcale 和.net端口冲突问题
/// 替换非法字符 (杨军 06.9.6-11:52am)
/// </summary>
/// <param name="Temp">需要检查的字符串</param>
/// <returns>string</returns>
public string ReplaceDangerCode (string Temp)
{
Temp = Temp.Replace("'","");
Temp = Temp.Replace("\"","");
Temp = Temp.Replace("or","");
Temp = Temp.Replace("&","");
Temp = Temp.Replace("*","");
Temp = Temp.Replace("select ","");
Temp = Temp.Replace("insert ","");
Temp = Temp.Replace("delete ","");
Temp = Temp.Replace("count(","");
Temp = Temp.Replace("drop table ","");
Temp = Temp.Replace("update ","");
Temp = Temp.Replace("truncate ","");
Temp = Temp.Replace("asc(","");
Temp = Temp.Replace("mid(","");
Temp = Temp.Replace("char(","");
Temp = Temp.Replace("xp_cmdshell","");
Temp = Temp.Replace("exec master","");
Temp = Temp.Replace("net localgroup administrators","");
Temp = Temp.Replace(" and ","");
Temp = Temp.Replace("net user","");
Temp = Temp.Replace(" or ","");
return Temp;
}