This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Searching for Code in Classic ASP"

From OWASP
Jump to: navigation, search
(New page: ==Inputs== Request <br> Request.QueryString <br> Request.Form <br> Request.ServerVariables <br> Query_String <br> hidden <br> include <br> .inc <br> ==Output== Response.Write <br> Respons...)
 
(Error Handling)
Line 18: Line 18:
  
 
==Error Handling==
 
==Error Handling==
err. <br>
+
err. <br>
Server.GetLastError <br>
+
Server.GetLastError <br>
On Error Resume Next <br>
+
On Error Resume Next <br>
On Error GoTo 0 <br>
+
On Error GoTo 0 <br>
+
 
 
==Information in URL==
 
==Information in URL==
 
location.href <br>
 
location.href <br>

Revision as of 13:14, 11 January 2009

Inputs

Request
Request.QueryString
Request.Form
Request.ServerVariables
Query_String
hidden
include
.inc

Output

Response.Write
Response.BinaryWrite
<%=

Cookies

.cookies

Error Handling

err.
Server.GetLastError
On Error Resume Next
On Error GoTo 0

Information in URL

location.href
location.replace
method="GET"

Database

commandText 

select from
update
insert into
delete from where
exec
execute
.execute
.open
ADODB.
commandtype
ICommand
IRowSet

Session

session.timeout
session.abandon
session.removeall

DOS Prevention

server.ScriptTimeout
IsClientConnected

Logging

WriteEntry

Redirection

Response.AddHeader
Response.AppendHeader
Response.Redirect
Response.Status
Response.StatusCode
Server.Transfer
Server.Execute