asp.netºǫ́Óëǰ̨µÄ»¥Ïàµ÷ÓÃ
Ò».ºǫ́µ÷ÓÃǰ̨
1.Page.ClientScript.RegisterStartupScript(type,"",script);
Àý:
string script = string.Format("<script>alert('Wrong');</script>");
Page.ClientScript.RegisterStartupScript(GetType(), "Load", script);
2.¶ÔÏó.Attributes.Add("ʼþ","script")
Àý:
e.Row.Attributes.Add("onmouseover", "c=this.style.backgroundColor;this.style.backgroundColor='#ECECFF'");
¶þ.ǰ̨µ÷Óúǫ́
1.Ò»°ãûÓбØÒªÔÚhtmlÎļþÀïµ÷ÓÃcsÎļþ.
Ïà¹ØÎĵµ£º
ÒÔϾÑé×ܽá×Ô£¬²¢ÇÒ¾¹ýÑéÖ¤
1£¬²»²ÎÓëPOSTBACK»úÖƵĿؼþ£¬²»ÒªÓ÷þÎñÆ÷¿Ø¼þ£¬¾¡Á¿Óþ²Ì¬HTML±ê¼Ç
2£¬±àÒëʱʹÓÃRELEASEÅäÖÃ
3£¬ÕýʽͶÈëÓ¦ÓÃʱ£¬¼Ç׎«DEBUGÉèΪFALSE
4£¬SMARTNAVIGATE¼Ç×ÅÉèΪTRUE£¬Ëü¿ÉÒÔÈÃä¯ÀÀÕ߸оõµ½ÄãÐÔÄܵÄÌá¸ß
5£¬Èç¹û²»ÊDZØÐë±£³Ö¸üеÄÒ³Ã棬Çë¼Çס¼ÓÈëÉùÃ÷£¬Ëü¿ÉÒÔ´ó·ùÌá¸ßÐÔÄÜ
6£¬³ý ......
1>>δÄܼÓÔØÎļþ»ò³ÌÐò¼¯“System.Web.Mvc, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35”»òËüµÄijһ¸öÒÀÀµÏϵͳÕÒ²»µ½Ö¸¶¨µÄÎļþ¡£
½â¾ö£ºµ½C:\Program Files\Microsoft ASP.NET\ASP.NET MVC 1.0\Assemblies ÏÂÕÒµ½ System.Web.Mvc.dll Îļþ ¸´ÖƵ½ÏîÄ¿µÄbinÄ¿Â¼Ï ......
ÎÒÃÇÔÚ.NET³ÌÐòµÄ¿ª·¢¹ý³ÌÖУ¬³£³£ÐèÒªºÍÓû§½øÐÐÐÅÏ¢½»»¥£¬±ÈÈçÖ´ÐÐijÏî²Ù×÷ÊÇ·ñ³É¹¦£¬“È·¶¨”»¹ÊÇ“È¡Ïû”£¬ÒÔ¼°Ñ¡Ôñ“È·¶¨”»ò“È¡Ïû”ºóÊÇ·ñÐèÒªÌøתµ½Ä³¸öÒ³ÃæµÈ£¬ÏÂÃæÊDZ¾È˶Գ£ÓöԻ°¿òʹÓõÄС½á£¬Ï£Íû¶Ô´ó¼ÒÓÐËù°ïÖú£¬Í¬Ê±Ò²»¶Ó´ó¼Ò²¹³ä¡£
......
µÚÒ»£¬ н¨ÍøÕ¾£¬Ñ¡ÔñÀàÐÍΪasp.net web ·þÎñ¡£
ϵͳ×Ô¶¯ÎªÄ㽨Á¢Á˸öÎļþservice.asmx.Õâ¾ÍÊÇÒ»¸ö×î¼òµ¥µÄweb service·þÎñ¡£Äã¿ÉÒÔÖ±½ÓÔËÐв鿴Ч¹û¡£
µÚ¶þ£¬ÎÒÃÇÐèÒªµÄÊÇÐÞ¸Äservice.csÖеĴúÂ룬À´Âú×ãÎÒÃǵÄÒªÇó¡£
Ð޸ĺóµÄService.csÖеĴúÂëΪ£º
using System;
using System.Web;
using System.Web.Services;
......
