JavaScript³£ÓöÔÏóÏê½â
SCRIPT 񈬀
ÓÃÓÚ°üº¬JavaScript´úÂë.
ÊôÐÔ
LANGUAGE ¶¨Òå½Å±¾ÓïÑÔ
SRC ¶¨ÒåÒ»¸öURLÓÃÒÔÖ¸¶¨ÒÔ.JS½áβµÄÎļþ
window¶ÔÏó
ÿ¸öHTMLÎĵµµÄ¶¥²ã¶ÔÏó.
ÊôÐÔ
frames[] ×ÓèåÊý×é.ÿ¸ö×ÓèåÊý×é°´Ô´ÎĵµÖж¨ÒåµÄ˳Ðò´æ·Å.
feames.length ×Óèå¸öÊý.
self µ±Ç°´°¿Ú.
parent ¸¸´°¿Ú(µ±Ç°´°¿ÚÊÇÖÐÒ»¸ö×Ó´°¿Ú).
top ¶¥²ã´°¿Ú(ÊÇËùÓпɼû´°¿ÚµÄ¸¸´°¿Ú).
status ä¯ÀÀÆ÷״̬´°¿ÚÉϵÄÏûÏ¢.
defaultStatus µ±statusÎÞЧʱ,³öÏÖÔÚä¯ÀÀÆ÷״̬´°¿ÚÉϵÄȱʡÏûÏ¢.
name ÄÚ²¿Ãû,ΪÓÉwindow.open()·½·¨´ò¿ªµÄ´°¿Ú¶¨ÒåµÄÃû×Ö.
·½·¨
alert("message") ÏÔʾº¬Óиø¶¨ÏûÏ¢µÄ"JavaScript Alert"¶Ô»°¿ò.
confirm("message") ÏÔʾº¬Óиø¶¨ÏûÏ¢µÄ"Confirm"¶Ô»°¿ò(ÓÐÒ»¸öOK°´Å¥ºÍÒ»¸öCancel°´Å¥).Èç¹ûÓû§µ¥»÷OK·µ»Øtrue,·ñÔò·µ»Øfalse.
prompt("message") ÏÔʾһ¸ö"prompt"¶Ô»°¿ò,ÒªÇóÓû§¸ù¾ÝÏÔʾÏûÏ¢¸øÓèÏàÓ¦ÊäÈë.
open("URL","name") ´ò¿ªÒ»¸öд°¿Ú,¸øÓèÒ»¸öÖ¸¶¨µÄÃû×Ö.
close() ¹Ø±Õµ±Ç°´°¿Ú.
frame¶ÔÏó
ËüÊÇÕû¸öä¯ÀÀÆ÷´°¿ÚµÄ×Ó´°¿Ú,³ýÁËstatus,defaultStatus,nameÊôÐÔÍâ,ËüÓµÓÐwindow¶ÔÏóµÄÈ«²¿ÊôÐÔ.
location¶ÔÏó
º¬Óе±Ç°URLµÄÐÅÏ¢.
ÊôÐÔ
href Õû¸öURL×Ö·û´®.
protocol º¬ÓÐURLµÚÒ»²¿·ÖµÄ×Ö·û´®,Èçhttp:
host °üº¬ÓÐURLÖÐÖ÷»úÃû:¶Ë¿ÚºÅ²¿·ÖµÄ×Ö·û´®.Èç//www.cenpok.net/server/
hostname °üº¬URLÖÐÖ÷»úÃûµÄ×Ö·û´®.Èçhttp://www.cenpok.net
port °üº¬URLÖпÉÄÜ´æÔڵĶ˿ںÅ×Ö·û´®.
pathname URLÖÐ"/"ÒÔºóµÄ²¿·Ö.Èç~list/index.htm
hash "#"ºÅ(CGI²ÎÊý)Ö®ºóµÄ×Ö·û´®.
search "?"ºÅ(CGI²ÎÊý)Ö®ºóµÄ×Ö·û´®.
document¶ÔÏó
º¬Óе±Ç°ÎĵµÐÅÏ¢µÄ¶ÔÏó.
ÊôÐÔ
title µ±Ç°Îĵµ±êÌâ,Èç¹û䶨Òå,Ôò°üº¬"Untitled".
location ÎĵµµÄÈ«URL.
lastModified º¬ÓÐÎĵµ×îºóÐÞ¸ÄÈÕÆÚ.
r
Ïà¹ØÎĵµ£º
javascriptÖÐevent.keycode
keycode 8 = BackSpace BackSpace
keycode 9 = Tab Tab
keycode 12 = Clear
keycode 13 = Enter
keycode 16 = Shift_L
keycode 17 = Control_L
keycode 18 = Alt_L
keycode 19 = Pause
keycode 20 = Caps_Lock
keycode 27 = Escape Escape
keycode 32 = space space ......
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; ......
calcu() ----º¯ÊýʵÏÖÁ½¸öÊýÏà³Ë
document.write(); ---´òÓ¡
document.calc.ÔªËØÃû.value; --»ñµÃ±íµ¥µÄÖµ
document.±íµ¥Ãû¡£±íµ¥ÔªËØÃû¡£value Ϊ±íµ¥¸³Öµ
¶¨Ò庯Êý£º
function Ãû×Ö()
{
//javaScriptÔ¤Óï¾ä
}
onClick="º¯ÊýÃû"; ......
JavascriptÖеļ̳лúÖÆÊÇËùνµÄÔÐͶÔÏó¼Ì³Ð£¬Í¨¹ýÊôÐÔ·ÃÎÊ»úÖƵÄÌØÊâÐÔÀ´ÊµÏּ̳еġ£Ö®Ç°ÎÒÒ»Ö±ÒÔΪËùÓжÔÏóµÄÔÐͶÔÏó¾ÍÊÇprototypeËùÖ¸µÄÄǸö¶ÔÏ󡣺óÀ´ÔÚ¿´javascriptÉè¼ÆģʽµÄʱºò·¢ÏÖ×÷Õß×¢ÖÐÓÐÒ»¾ä»°ÓëÎÒ֮ǰµÄÀí½â²»Í¬£¬Ëû˵“ÿ¸ö¶ÔÏó¶¼ÓÐÒ»¸öÔÐͶÔÏ󣬵«Õâ²¢²»Òâζ×Åÿ¸ö¶ÔÏó¶ ......
XMLHttpRequest Script Injection XHR½Å±¾×¢Èë
Another approach to nonblocking scripts is to retrieve the JavaScript code using an XMLHttpRequest (XHR) object and then inject the script into the page. This technique involves creating an XHR object, downloading the JavaScript f ......
