加入收藏 | 设为首页 | 会员中心 | 我要投稿 聊城站长网 (https://www.0635zz.com/)- 智能语音交互、行业智能、AI应用、云计算、5G!
当前位置: 首页 > 站长学院 > Asp教程 > 正文

asp中惯用的字符串安全处理函数集合(过滤特殊字符等)

发布时间:2023-05-19 15:24:06 所属栏目:Asp教程 来源:
导读:在asp编写中,我们需要注意特殊字符串的处理,防止被黑客利用。使用asp的朋友一定要参考下。

复制代码 代码如下:

'=====================================

'转换内容,防止意外

'======
在asp编写中,我们需要注意特殊字符串的处理,防止被黑客利用。使用asp的朋友一定要参考下。
 
复制代码 代码如下:
 
'=====================================
 
'转换内容,防止意外
 
'=====================================
 
Function Content_Encode(ByVal t0)
 
IF IsNull(t0) Or Len(t0)=0 Then
 
Content_Encode=""
 
Else
 
Content_Encode=Replace(t0,"<","<")
 
Content_Encode=Replace(Content_Encode,">",">")
 
End IF
 
End Function
 
'=====================================
 
'反转换内容
 
'=====================================
 
Function Content_Decode(ByVal t0)
 
IF IsNull(t0) Or Len(t0)=0 Then
 
Content_Decode=""
 
Else
 
Content_Decode=Replace(t0,"<","<")
 
Content_Decode=Replace(Content_Decode,">",">")
 
End IF
 
End Function
 
'=====================================
 
'过滤字符
 
'=====================================
 
Function FilterText(ByVal t0,ByVal t1)
 
IF Len(t0)=0 Or IsNull(t0) Or IsArray(t0) Then FilterText="":Exit Function
 
t0=Trim(t0)
 
Select Case t1
 
Case "1"
 
t0=Replace(t0,Chr(32)," ")
 
t0=Replace(t0,Chr(13),"")
 
t0=Replace(t0,Chr(10)&Chr(10),"<br>")
 
t0=Replace(t0,Chr(10),"<br>")
 
Case "2"
 
t0=Replace(t0,Chr(8),"")'回格
 
t0=Replace(t0,Chr(9),"")'tab(水平制表符)
 
t0=Replace(t0,Chr(10),"")'换行
 
t0=Replace(t0,Chr(11),"")'tab(垂直制表符)
 
t0=Replace(t0,Chr(12),"")'换页
 
t0=Replace(t0,Chr(13),"")'回车 chr(13)&chr(10) 回车和换行的组合
 
t0=Replace(t0,Chr(22),"")
 
t0=Replace(t0,Chr(32),"")'空格 SPACE
 
t0=Replace(t0,Chr(33),"")'!
 
t0=Replace(t0,Chr(34),"")'"
 
t0=Replace(t0,Chr(35),"")'#
 
t0=Replace(t0,Chr(36),"")'$
 
t0=Replace(t0,Chr(37),"")'%
 
t0=Replace(t0,Chr(38),"")'&
 
t0=Replace(t0,Chr(39),"")''
 
t0=Replace(t0,Chr(40),"")'(
 
t0=Replace(t0,Chr(41),"")')
 
t0=Replace(t0,Chr(42),"")'*
 
t0=Replace(t0,Chr(43),"")'+
 
t0=Replace(t0,Chr(44),"")',
 
t0=Replace(t0,Chr(45),"")'-
 
t0=Replace(t0,Chr(46),"")'.
 
t0=Replace(t0,Chr(47),"")'/
 
t0=Replace(t0,Chr(58),"")':
 
t0=Replace(t0,Chr(59),"")';
 
t0=Replace(t0,Chr(60),"")'<
 
t0=Replace(t0,Chr(61),"")'=
 
t0=Replace(t0,Chr(62),"")'>
 
t0=Replace(t0,Chr(63),"")'?
 
t0=Replace(t0,Chr(64),"")'@
 
t0=Replace(t0,Chr(91),"")'/
 
t0=Replace(t0,Chr(92),"")'/
 
t0=Replace(t0,Chr(93),"")']
 
t0=Replace(t0,Chr(94),"")'^
 
t0=Replace(t0,Chr(95),"")'_
 
t0=Replace(t0,Chr(96),"")'`
 
t0=Replace(t0,Chr(123),"")'{
 
t0=Replace(t0,Chr(124),"")'|
 
t0=Replace(t0,Chr(125),"")'}
 
t0=Replace(t0,Chr(126),"")'~
 
Case Else
 
t0=Replace(t0, "&", "&")
 
t0=Replace(t0, "'", "'")
 
t0=Replace(t0, """", """)
 
t0=Replace(t0, "<", "<")
 
t0=Replace(t0, ">", ">")
 
End Select
 
IF Instr(Lcase(t0),"expression")>0 Then
 
t0=Replace(t0,"expression","e­xpression", 1, -1, 0)
 
End If
 
FilterText=t0
 
End Function
 
'=====================================
 
'过滤常见字符及Html
 
'=====================================
 
Function FilterHtml(ByVal t0)
 
IF Len(t0)=0 Or IsNull(t0) Or IsArray(t0) Then FilterHtml="":Exit Function
 
IF Len(Sdcms_Badhtml)>0 Then t0=ReplaceText(t0,"<(//|)("&Sdcms_Badhtml&")", "<$1$2")
 
IF Len(Sdcms_BadEvent)>0 Then t0=ReplaceText(t0,"<(.[^>]*)("&Sdcms_BadEvent&")", "<$1$2")
 
t0=FilterText(t0,0)
 
FilterHtml=t0
 
End Function
 
Function GotTopic(ByVal t0,ByVal t1)
 
IF Len(t0)=0 Or IsNull(t0) Then
 
GotTopic=""
 
Exit Function
 
End IF
 
Dim l,t,c, i
 
t0=Replace(Replace(Replace(Replace(t0," "," "),""",chr(34)),">",">"),"<","<")
 
l=Len(t0)
 
t=0
 
For I=1 To l
 
c=Abs(Asc(Mid(t0,i,1)))
 
IF c>255 Then t=t+2 Else t=t+1
 
IF t>=t1 Then
 
gotTopic=Left(t0,I)&"…"
 
Exit For
 
Else
 
GotTopic=t0
 
End IF
 
Next
 
GotTopic=Replace(Replace(Replace(Replace(GotTopic," "," "),chr(34),"""),">",">"),"<","<")
 
End Function
 
Function UrlDecode(ByVal t0)
 
Dim t1,t2,t3,i,t4,t5,t6
 
t1=""
 
t2=False
 
t3=""
 
For I=1 To Len(t0)
 
t4=Mid(t0,I,1)
 
IF t4="+" Then
 
t1=t1&" "
 
ElseIF t4="%" Then
 
t5=Mid(t0,i+1,2)
 
t6=Cint("&H" & t5)
 
IF t2 Then
 
t2=False
 
t1=t1&Chr(Cint("&H"&t3&t5))
 
Else
 
IF Abs(t6)<=127 then
 
t1=t1&Chr(t6)
 
Else
 
t2=True
 
t3=t5
 
End IF
 
End IF
 
I=I+2
 
Else
 
t1=t1&t4
 
End IF
 
Next
 
UrlDecode=t1
 
End Function
 
Function CutStr(byVal t0,byVal t1)
 
Dim l,t,c,i
 
IF IsNull(t0) Then CutStr="":Exit Function
 
l=Len(t0)
 
t1=Int(t1)
 
t=0
 
For I=1 To l
 
c=Asc(Mid(t0,I,1))
 
IF c<0 Or c>255 Then t=t+2 Else t=t+1
 
IF t>=t1 Then
 
CutStr=Left(t0,I)&"..."
 
Exit For
 
Else
 
CutStr=t0
 
End IF
 
Next
 
End Function
 
Function CloseHtml(ByVal t0)
 
Dim t1,I,t2,t3,Regs,Matches,J,Match
 
Set Regs=New RegExp
 
Regs.IgnoreCase=True
 
Regs.Global=True
 
t1=Array("p","div","span","table","ul","font","b","u","i","h1","h2","h3","h4","h5","h6")
 
For I=0 To UBound(t1)
 
t2=0
 
t3=0
 
Regs.Pattern="/<"&t1(I)&"( [^/</>]+|)/>"
 
Set Matches=Regs.Execute(t0)
 
For Each Match In Matches
 
t2=t2+1
 
Next
 
Regs.Pattern="/</"&t1(I)&"/>"
 
Set Matches=Regs.Execute(t0)
 
For Each Match In Matches
 
t3=t3+1
 
Next
 
For j=1 To t2-t3
 
t0=t0+"</"&t1(I)&">"
 
Next
 
Next
 
CloseHtml=t0
 
End Function
 
 

(编辑:聊城站长网)

【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容!
    相关内容
      推荐文章
        站长推荐
        热点阅读

        【免责声明】本站内容转载自互联网,其发布内容言论不代表本站观点,如果其链接、内容的侵犯您的权益,烦请提交相关链接至邮箱bqsm@foxmail.com我们将及时予以处理。

        建议您使用1920×1080分辨率、谷歌浏览器Google Chrome、Microsoft Edge以获得本站的优质浏览效果

        Copygight © 2016-2023 https://www.0635zz.com/ All Rights Reserved. 聊城站长网