ShuDudu's Home

ShuDudu's English Home
    • ShuDudu's Home was started in 2011, but the web data is lost, so now begin again, I would like to make some friends, I hope you like ShuDudu's home.
    Current position: ShuDudu > Life >

    [ASP]Anti-SQL injection attack program

    Monday on July 18th, 2005Life

    see a general ASP anti-SQL injection attack program. Keep it.

    first of all, we define that the request cannot contain the following characters: 

     | and | exec | insert | select | delete | update | count | * |% | chr | mid | truncate | char | declare

    each character is separated by "|", and then we judge the resulting Request.QueryString. The specific code is as follows: 

     dim sql_injdataSQL_injdata = & quot;' | and | exec | insert | select | delete | update | count | * |% | chr | mid | master | truncate | char | declare"SQL_inj = split (SQL_Injdata," | & quot;)If Request.QueryString<>"" ThenFor Each SQL_Get In Request.QueryStringFor SQL_Data=0 To Ubound (SQL_inj)If instr (Request.QueryString (SQL_Get), Sql_Inj (Sql_DATA)) & gt;0 ThenResponse.Write & quot;

    Copyright Protection: ShuDudu from the original article, reproduced Please keep the link: https://www.shududu.com/life/ASP-Anti-SQL-injection-attack-program.htm

    SHUDUDUabout meShuDudu
    Female, I'm from Macau, gentle personality, I like learning English, like music and movies.

    recommended article

    popular articles

    Tags

    About ShuDudu

    My English is not good, but I like to learn English, so I'm writing on my website, translation of the article of interest, if your native language is English, you can ask me to learn English?

    contact ShuDudu

  • ShuDudu
  • Email:shududu@breem***.com

    • Special thanks

  • my friend
  • some one

    • Copyright © 2011~2020 ShuDudu.com