Discuz教程网

1314学习网»站长论坛 站长交流区 技术杂谈 asp中常用的字符串安全处理函数集合(过滤特殊字符等)
返回列表 发新帖

asp中常用的字符串安全处理函数集合(过滤特殊字符等)

[复制链接]
authicon dly 发表于 2011-9-14 08:59:11 | 显示全部楼层 |阅读模式
  1. '=====================================
  2. '转换内容,防止意外
  3. '=====================================
  4. Function Content_Encode(ByVal t0)
  5. IF IsNull(t0) Or Len(t0)=0 Then
  6. Content_Encode=""
  7. Else
  8. Content_Encode=Replace(t0,"<","<")
  9. Content_Encode=Replace(Content_Encode,">",">")
  10. End IF
  11. End Function

  13. '=====================================
  14. '反转换内容
  15. '=====================================
  16. Function Content_Decode(ByVal t0)
  17. IF IsNull(t0) Or Len(t0)=0 Then
  18. Content_Decode=""
  19. Else
  20. Content_Decode=Replace(t0,"<","<")
  21. Content_Decode=Replace(Content_Decode,">",">")
  22. End IF
  23. End Function

  25. '=====================================
  26. '过滤字符
  27. '=====================================
  28. Function FilterText(ByVal t0,ByVal t1)
  29. IF Len(t0)=0 Or IsNull(t0) Or IsArray(t0) Then FilterText="":Exit Function
  30. t0=Trim(t0)
  31. Select Case t1
  32. Case "1"
  33. t0=Replace(t0,Chr(32)," ")
  34. t0=Replace(t0,Chr(13),"")
  35. t0=Replace(t0,Chr(10)&Chr(10),"<br>")
  36. t0=Replace(t0,Chr(10),"<br>")
  37. Case "2"
  38. t0=Replace(t0,Chr(8),"")'回格
  39. t0=Replace(t0,Chr(9),"")'tab(水平制表符)
  40. t0=Replace(t0,Chr(10),"")'换行
  41. t0=Replace(t0,Chr(11),"")'tab(垂直制表符)
  42. t0=Replace(t0,Chr(12),"")'换页
  43. t0=Replace(t0,Chr(13),"")'回车 chr(13)&chr(10) 回车和换行的组合
  44. t0=Replace(t0,Chr(22),"")
  45. t0=Replace(t0,Chr(32),"")'空格 SPACE
  46. t0=Replace(t0,Chr(33),"")'!
  47. t0=Replace(t0,Chr(34),"")'"
  48. t0=Replace(t0,Chr(35),"")'#
  49. t0=Replace(t0,Chr(36),"")'$
  50. t0=Replace(t0,Chr(37),"")'%
  51. t0=Replace(t0,Chr(38),"")'&
  52. t0=Replace(t0,Chr(39),"")''
  53. t0=Replace(t0,Chr(40),"")'(
  54. t0=Replace(t0,Chr(41),"")')
  55. t0=Replace(t0,Chr(42),"")'*
  56. t0=Replace(t0,Chr(43),"")'+
  57. t0=Replace(t0,Chr(44),"")',
  58. t0=Replace(t0,Chr(45),"")'-
  59. t0=Replace(t0,Chr(46),"")'.
  60. t0=Replace(t0,Chr(47),"")'/
  61. t0=Replace(t0,Chr(58),"")':
  62. t0=Replace(t0,Chr(59),"")';
  63. t0=Replace(t0,Chr(60),"")'<
  64. t0=Replace(t0,Chr(61),"")'=
  65. t0=Replace(t0,Chr(62),"")'>
  66. t0=Replace(t0,Chr(63),"")'?
  67. t0=Replace(t0,Chr(64),"")'@
  68. t0=Replace(t0,Chr(91),"")'\
  69. t0=Replace(t0,Chr(92),"")'\
  70. t0=Replace(t0,Chr(93),"")']
  71. t0=Replace(t0,Chr(94),"")'^
  72. t0=Replace(t0,Chr(95),"")'_
  73. t0=Replace(t0,Chr(96),"")'`
  74. t0=Replace(t0,Chr(123),"")'{
  75. t0=Replace(t0,Chr(124),"")'|
  76. t0=Replace(t0,Chr(125),"")'}
  77. t0=Replace(t0,Chr(126),"")'~
  78. Case Else
  79. t0=Replace(t0, "&", "&")
  80. t0=Replace(t0, "'", "'")
  81. t0=Replace(t0, """", """)
  82. t0=Replace(t0, "<", "<")
  83. t0=Replace(t0, ">", ">")
  84. End Select
  85. IF Instr(Lcase(t0),"expression")>0 Then
  86. t0=Replace(t0,"expression","e&shy;xpression", 1, -1, 0)
  87. End If
  88. FilterText=t0
  89. End Function

  91. '=====================================
  92. '过滤常见字符及Html
  93. '=====================================
  94. Function FilterHtml(ByVal t0)
  95. IF Len(t0)=0 Or IsNull(t0) Or IsArray(t0) Then FilterHtml="":Exit Function
  96. IF Len(Sdcms_Badhtml)>0 Then t0=ReplaceText(t0,"<(\/|)("&Sdcms_Badhtml&")", "<$1$2")
  97. IF Len(Sdcms_BadEvent)>0 Then t0=ReplaceText(t0,"<(.[^>]*)("&Sdcms_BadEvent&")", "<$1$2")
  98. t0=FilterText(t0,0)
  99. FilterHtml=t0
  100. End Function

  102. Function GotTopic(ByVal t0,ByVal t1)
  103. IF Len(t0)=0 Or IsNull(t0) Then
  104. GotTopic=""
  105. Exit Function
  106. End IF
  107. Dim l,t,c, i
  108. t0=Replace(Replace(Replace(Replace(t0," "," "),""",chr(34)),">",">"),"<","<")
  109. l=Len(t0)
  110. t=0
  111. For I=1 To l
  112. c=Abs(Asc(Mid(t0,i,1)))
  113. IF c>255 Then t=t+2 Else t=t+1
  114. IF t>=t1 Then
  115. gotTopic=Left(t0,I)&"…"
  116. Exit For
  117. Else
  118. GotTopic=t0
  119. End IF
  120. Next
  121. GotTopic=Replace(Replace(Replace(Replace(GotTopic," "," "),chr(34),"""),">",">"),"<","<")
  122. End Function

  124. Function UrlDecode(ByVal t0)
  125. Dim t1,t2,t3,i,t4,t5,t6
  126. t1=""
  127. t2=False
  128. t3=""
  129. For I=1 To Len(t0)
  130. t4=Mid(t0,I,1)
  131. IF t4="+" Then
  132. t1=t1&" "
  133. ElseIF t4="%" Then
  134. t5=Mid(t0,i+1,2)
  135. t6=Cint("&H" & t5)
  136. IF t2 Then
  137. t2=False
  138. t1=t1&Chr(Cint("&H"&t3&t5))
  139. Else
  140. IF Abs(t6)<=127 then
  141. t1=t1&Chr(t6)
  142. Else
  143. t2=True
  144. t3=t5
  145. End IF
  146. End IF
  147. I=I+2
  148. Else
  149. t1=t1&t4
  150. End IF
  151. Next
  152. UrlDecode=t1
  153. End Function

  155. Function CutStr(byVal t0,byVal t1)
  156. Dim l,t,c,i
  157. IF IsNull(t0) Then CutStr="":Exit Function
  158. l=Len(t0)
  159. t1=Int(t1)
  160. t=0
  161. For I=1 To l
  162. c=Asc(Mid(t0,I,1))
  163. IF c<0 Or c>255 Then t=t+2 Else t=t+1
  164. IF t>=t1 Then
  165. CutStr=Left(t0,I)&"..."
  166. Exit For
  167. Else
  168. CutStr=t0
  169. End IF
  170. Next
  171. End Function

  173. Function CloseHtml(ByVal t0)
  174. Dim t1,I,t2,t3,Regs,Matches,J,Match
  175. Set Regs=New RegExp
  176. Regs.IgnoreCase=True
  177. Regs.Global=True
  178. t1=Array("p","div","span","table","ul","font","b","u","i","h1","h2","h3","h4","h5","h6")
  179. For I=0 To UBound(t1)
  180. t2=0
  181. t3=0
  182. Regs.Pattern="\<"&t1(I)&"( [^\<\>]+|)\>"
  183. Set Matches=Regs.Execute(t0)
  184. For Each Match In Matches
  185. t2=t2+1
  186. Next
  187. Regs.Pattern="\</"&t1(I)&"\>"
  188. Set Matches=Regs.Execute(t0)
  189. For Each Match In Matches
  190. t3=t3+1
  191. Next
  192. For j=1 To t2-t3
  193. t0=t0+"</"&t1(I)&">"
  194. Next
  195. Next
  196. CloseHtml=t0
  197. End Function
复制代码

安全, asp, 特殊字符, 字符串



上一篇:PHP insert语法详解
下一篇:Asp中通过简单的例子理解下ByVal和ByRef的用法

相关帖子
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

1314学习网 ( 浙ICP备10214163号 )

GMT+8, 2025-5-2 10:45

Powered by Discuz! X3.4

© 2001-2013 Comsenz Inc.

快速回复 返回顶部 返回列表