Ò׽ؽØͼÈí¼þ¡¢µ¥Îļþ¡¢Ãâ°²×°¡¢´¿ÂÌÉ«¡¢½ö160KB

Discuz!NT 3.0 SQL×¢È멶´

 ·¢±íϱ¾È˽øÐЩ¶´ÍÚ¾òµÄÊ×ƪԭ´´ÎÄÕ£º
¶ÔDiscuz nT3.0½øÐÐÁË·ÖÎö£¬·¢ÏÖspacemanage.aspxÒ³Ãæ´æÔÚÒ»¸ö×¢È멶´£¬
¸ÃÒ³ÃæλÖãºdnt3_src\dnt3\Discuz.Web\space\Admin
´úÂëÈçÏ£º
public void BindData()
{
DataGrid1.AllowCustomPaging = true;
string username = Username.Text;
//string dateStart = joindateStart.SelectedDate.ToString().IndexOf("1900") >= 0 ? "" : joindateStart.SelectedDate.ToString();
//string dateEnd = joindateEnd.SelectedDate.AddDays(1).ToString().IndexOf("1900") >= 0 ? "" : joindateEnd.SelectedDate.AddDays(1).ToString();
string dateStart = joindateStart.SelectedDate.ToString();
string dateEnd = joindateEnd.SelectedDate.AddDays(1).ToString().IndexOf("1900") >= 0 ? DateTime.Now.AddDays(1).ToString() : joindateEnd.SelectedDate.AddDays(1).ToString();
DataGrid1.VirtualItemCount = DbProvider.GetInstance().GetSpaceRecordCount(username, dateStart, dateEnd);
DataGrid1.DataSource = buildGridData(username,dateStart,dateEnd);
DataGrid1.DataBind();
}

¶ÔUSERNAME ½øÐиú×Ù£¬·¢ÏÖδ¶Ô¸Ã²ÎÊý½øÐÐÈκιýÂË¡£´æÔÚSQL×¢È멶´¡£
±¾ÈËδ¶Ô¸Ã©¶´½øÐвâÊÔ£¬Èç¹ûÓÐÈ˲âÊÔÍêÖ¤Ã÷ȷʵ´æÔÚÇ뼰ʱÁªÏµ¹Ù·½¡£
ÁíÍ⣬תÌùÇë×¢Ã÷³ö´¦¡£


Ïà¹ØÎĵµ£º

Sql Server2005ÓÃRow_Number·ÖÒ³´æ´¢¹ý³ÌµÄÐÔÄÜʵ²â

Sql Server2005µÄÒ»¸öÐÂÌØÐÔ±ãÊÇÎÒµÈÁ˺ܾõÄRow_Number(),ÒÔÇ°ÓÃOracleʱÓÃrownumberд·ÖÒ³´æ´¢¹ý³ÌºÜ·½±ã£º£©
ÏÂÃæÊÇÎÒ×öµÄÒ»¸öССµÄ²âÊÔ£¬²âÊÔÎÒÔ­À´ÔÚsql server2000ÏÂËùÓõķÖÒ³´æ´¢¹ý³ÌÓëʹÓÃRow_Number()±àдµÄ´æ´¢¹ý³ÌÔÚSql Server2005ÉϵÄÖ´ÐÐЧÂÊ...
Êý¾Ý±í£º
REATE TABLE [dbo].[test](
[UserId] [int] Pri ......

¹È¸èɵ¹ÏʽSQL×¢Éä(Google dorks sql injection)

Google dorks sql injection:
inurl:index.php?id=  
inurl:trainers.php?id=  
inurl:buy.php?category=  
inurl:article.php?ID=  
inurl:Play_old.php?id=  
inurl:declaration_more.php?decl_id=  
inurl:Pageid=  
inurl:game ......

¹ØÓÚ³ÌÐò´úÂëÖеÄSQLÓï¾ä

ÔÚ³ÌÐòÖÐÓÐЩ²éѯÓï¾äÏà¶Ô½Ï³¤£¬¿ÉÒÔ½«Óï¾äµ¥¶ÀдÔÚÒ»¸öXXX.sqlÎļþÖУ¬ÔÚ³ÌÐòÖжÁÈ¡SQLÎļþ
¾ßÌåÉæ¼°µ½
import java.io.File;
import org.apache.commons.io.FileUtils;
import java.net.URL;
URL resourceUrl = XXXX.class.getClassLoader().getResource(SQL_PATH+sqlName);//SQL_PATH¾ßÌåSQLÎļþ´æÔÚ·¾¶£¬sqlName¼ ......

ÈÃSQL SERVERÍ»ÆÆ2GÄÚ´æÏÞÖÆ


32
λµÄ²Ù×÷ϵͳֻÄÜÓÃ
4G
µÄÄڴ棨²»È·¶¨Õâ¾ä»°ÊÇ·ñÕýÈ·£©£¬ÒòΪ
2
µÄ
32
´Î·½ÊÇ
4G
¡£Ä¬ÈϵÄÇé¿öÏ£¬²Ù×÷ϵͳ¸ø×Ô¼ºÁôÁË
2G
£¬Ê£ÏµÄ
2G
¸øÓ¦ÓóÌÐò¡£ËùÒÔ£¬Ã¿¸öÓ¦ÓóÌÐòËùÄÜʹÓõÄÄڴ棬×î´ó²»³¬¹ý
2G
¡£¾Ý˵¿ÉÒÔ¸Ä
WINDOWS
µÄ
BOOT.INI
£¬Ç¿ÖƲÙ×÷ϵͳֻʹÓÃ
1G
£¬¼´Ê¹ÕâÑù£¬Ó¦ÓóÌÐòÒ²ÖÁ¶àÊÇ ......
© 2009 ej38.com All Rights Reserved. ¹ØÓÚE½¡ÍøÁªÏµÎÒÃÇ | Õ¾µãµØͼ | ¸ÓICP±¸09004571ºÅ