关于XSS攻击,文本框内容用StringBuilder怎么写
因为怕受到攻击,让我用下面这个去写,因为不太清楚VB.NET怎么写,所以找高手帮忙写一下代码。
VB.NET Example:
Dim sb As StringBuilder = New StringBuilder( _
HttpUtility.HtmlEncode(input))
sb.Replace("<b>", "<b>")
sb.Replace("</b>", "<b>")
sb.Replace("<i>", "<i>")
sb.Replace("</i>", "</i>")
Response.Write(sb.ToString())
login.aspx代码
<IE:HOMEPAGE id="oHomePage" />
<form id="Form1" method="post" runat="server">
...
<asp:textbox
id="txtEmpNo" runat="server" Width="88px" MaxLength="10" style="BORDER-RIGHT: #adadad 1px solid; BORDER-TOP: #adadad 1px
solid; BORDER-LEFT: #adadad 1px solid; BORDER-BOTTOM: #adadad 1px solid"
Height="20px"></asp:textbox></td>
<td align="right"
rowspan="3"><img src="image/main/login_images03.gif" width="29" height="99" border="0"></td>
</tr>
<tr>
<td>
<P>
<asp:textbox id="txtPwd" runat="server" Width="88px" TextMode="Password" style="BORDER-RIGHT: #adadad 1px solid; BORDER-TOP:
#adadad 1px solid; BORDER-LEFT: #adadad 1px solid; BORDER-BOTTOM: #adadad 1px solid"
Height="20px"></asp:textbox></P>
</td>
</tr>
<tr>
<td>
<P><asp:imagebutton id="btnLogin" tabIndex="3" runat="server" ImageUrl="image/main/login_icon.gif"></asp:imagebutton><a
href="#" OnMouseOut="na_restore_img_src('login_icon', 'document')" OnMouseOver="na_change_img_src('login_icon', 'document',
'images/login_icon_a.gif', true)"></a></P>
不知道这段代码需要怎么改写,,,
如果可以加我Q895898970. --------------------编程问答-------------------- 怎么把得到的用户名,StringBuilder类,去过滤一下呢 --------------------编程问答-------------------- 这段代码怎么添加到aspx页面里面啊
VB.NET Example:
Dim sb As StringBuilder = New StringBuilder( _
HttpUtility.HtmlEncode(input))
sb.Replace("<b>", "<b>")
sb.Replace("</b>", "<b>")
sb.Replace("<i>", "<i>")
sb.Replace("</i>", "</i>")
Response.Write(sb.ToString())
--------------------编程问答-------------------- replace过滤
补充:.NET技术 , VB.NET
