【www.bbyears.com--手机软件】
<%
"=====================================================================
" 软件名称:新云网站管理系统
" 当前版本:NewCloud Site Management System Version 2.1
" 文件名称:admin_password.asp
" 更新日期:2004-12-20
" 官方网站:新云网络(www.newasp.net www.newasp.cn) QQ:94022511
"=====================================================================
" Copyright 2002-2005 newasp.net - All Rights Reserved.
" newasp is a trademark of newasp.net
"=====================================================================
Dim ID
Response.Write "<script language=""JavaScript"">" & vbCrLf
Response.Write ""
Response.Write "</script>" & vbCrLf
Admin_header
Dim Action
Action = LCase(Request("action"))
If Not ChkAdmin("ChangePassword") Then
Server.Transfer("showerr.asp")
Response.End
End If
Set Rs = Server.CreateObject("adodb.recordset")
Select Case Action
Case "save"
Call svaeadmin
Case Else
Call PassMain
End Select
If FoundErr = True Then
ReturnError(ErrMsg)
End If
Admin_footer
SaveLogInfo(AdminName)
CloseConn
Private Sub PassMain()
Response.Write "" & vbCrLf
Response.Write " " & vbCrLf
Response.Write "
Response.Write "" & vbCrLf
Response.Write "
" & vbCrLf
End Sub
Private Sub svaeadmin()
Dim password
Set Rs = Server.CreateObject("ADODB.RecordSet")
password = md5(Request.Form("password"))
If Newasp.checkpost = False Then
ErrMsg = ErrMsg + "您提交的数据不合法,请不要从外部提交注册。"
founderr = True
End If
If InStr(Request("username"), "=") > 0 Or InStr(Request("username"), "%") > 0 Or InStr(Request("username"), Chr(32)) > 0 Or InStr(Request("username"), "?") > 0 Or InStr(Request("username"), "&") > 0 Or InStr(Request("username"), ";") > 0 Or InStr(Request("username"), ",") > 0 Or InStr(Request("username"), """) > 0 Or InStr(Request("username"), ",") > 0 Or InStr(Request("username"), Chr(34)) > 0 Or InStr(Request("username"), Chr(9)) > 0 Or InStr(Request("username"), "