dim upload,oFile,formName,SavePath,filename,fileExt,oFileSize dim EnableUpload dim UpFileType,arrUpFileType dim ranNum dim msg,FoundErr dim DialogType msg="" FoundErr=false EnableUpload=false 'SavePath = SaveUpFilesPath '存放上传文件的目录 'if right(SavePath,1)<>"/" then SavePath=SavePath&"/" '在目录后加(/) %>
<% sub upload_0() '使用化境无组件上传类 set upload=new upfile_class ''建立上传对象 upload.GetData(104857600) '取得上传数据,限制最大上传100M if upload.err > 0 then '如果出错 select case upload.err case 1 response.write "请先选择你要上传的文件!" case 2 response.write "你上传的文件总大小超出了最大限制(100M)" end select response.end end if DialogType=trim(upload.form("DialogType")) select case DialogType case "pic" UpFileType=UpFileType_pic case "flash" UpFileType=UpFileType_flash case "media" UpFileType=UpFileType_media case "rm" UpFileType=UpFileType_rm case else UpFileType="" end select SavePath=trim(upload.form("SavePath")) InputName=trim(upload.form("inputname")) if right(SavePath,1)<>"/" then SavePath=SavePath&"/" for each formName in upload.file '列出所有上传了的文件
12 条留言
我要留言cproxy | 2009-10-14 16:08:18
名称:在线代理
地址:www.cproxy.cn
[Reply]
金玉 | 2009-12-11 20:05:11
[Reply]
苍井空 | 2009-12-24 21:08:59
[Reply]
想 | 2010-1-18 1:57:40
[Reply]
风神小牛牛 | 2010-4-8 22:25:58
今天在网上下载了一个企业网站源码,上传文件Upfile_Dialog.asp用的是无组件上传,
加入了<!--#include file="check_session.asp"-->验证用户登录,
请老大分析一下,这个文件是否还有什么上传漏洞?
谢谢,源代码如下:
<!--#include file="check_session.asp"-->
<!--#include file="upfile_class.asp"-->
<%
const upload_type=0 '上传方法:0=无惧无组件上传类,1=FSO上传 2=lyfupload,3=aspupload,4=chinaaspupload
const SaveUpFilesPath="../UploadFiles"
const UpFileType_pic="jpg|gif"
const UpFileType_flash="swf"
const UpFileType_media="wmv|asf|avi|mpg|mp3|mpeg|ram|rm|ra"
const UpFileType_rm="ram|rm|ra"
const MaxFileSize=300
dim upload,oFile,formName,SavePath,filename,fileExt,oFileSize
dim EnableUpload
dim UpFileType,arrUpFileType
dim ranNum
dim msg,FoundErr
dim DialogType
msg=""
FoundErr=false
EnableUpload=false
'SavePath = SaveUpFilesPath '存放上传文件的目录
'if right(SavePath,1)<>"/" then SavePath=SavePath&"/" '在目录后加(/)
%>
[Reply]
风神小牛牛 | 2010-4-8 22:27:25
<head>
<title>上传文件</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="editor_dialog.css">
</head>
<body bgColor=#FFFFFF leftmargin="2" topmargin="5" marginwidth="0" marginheight="0">
<%
select case upload_type
case 0
call upload_0() '使用化境无组件上传类
case else
'response.write "本系统未开放插件功能"
'response.end
end select
%>
</body>
</html>
[Reply]
风神小牛牛 | 2010-4-8 22:29:11
sub upload_0() '使用化境无组件上传类
set upload=new upfile_class ''建立上传对象
upload.GetData(104857600) '取得上传数据,限制最大上传100M
if upload.err > 0 then '如果出错
select case upload.err
case 1
response.write "请先选择你要上传的文件!"
case 2
response.write "你上传的文件总大小超出了最大限制(100M)"
end select
response.end
end if
DialogType=trim(upload.form("DialogType"))
select case DialogType
case "pic"
UpFileType=UpFileType_pic
case "flash"
UpFileType=UpFileType_flash
case "media"
UpFileType=UpFileType_media
case "rm"
UpFileType=UpFileType_rm
case else
UpFileType=""
end select
SavePath=trim(upload.form("SavePath"))
InputName=trim(upload.form("inputname"))
if right(SavePath,1)<>"/" then SavePath=SavePath&"/"
for each formName in upload.file '列出所有上传了的文件
[Reply]
理想 | 2010-6-10 17:12:58
[Reply]
婉儿 | 2010-8-31 23:43:39
[Reply]
谋划023 | 2010-10-22 13:18:55
都是虚伪的,
所以我只想说一句:
您的帖子太好看了!我愿意一辈子的看下去!也希望你多多看我的帖子
[Reply]