This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Searching for Code in Classic ASP"
(New page: ==Inputs== Request <br> Request.QueryString <br> Request.Form <br> Request.ServerVariables <br> Query_String <br> hidden <br> include <br> .inc <br> ==Output== Response.Write <br> Respons...) |
m (Added navigation to facilitate sequential reading online) |
||
(3 intermediate revisions by one other user not shown) | |||
Line 1: | Line 1: | ||
+ | {{LinkBar | ||
+ | | useprev=PrevLink | prev=Searching for Code in J2EE/Java | lblprev= | ||
+ | | usemain=MainLink | main=OWASP Code Review Guide Table of Contents | lblmain=Table of Contents | ||
+ | | usenext=NextLink | next=JavaScript/Web 2.0 Keywords and Pointers | lblnext= | ||
+ | }} | ||
+ | __TOC__ | ||
+ | |||
==Inputs== | ==Inputs== | ||
Request <br> | Request <br> | ||
Line 18: | Line 25: | ||
==Error Handling== | ==Error Handling== | ||
− | + | err. <br> | |
− | + | Server.GetLastError <br> | |
− | + | On Error Resume Next <br> | |
− | + | On Error GoTo 0 <br> | |
− | + | ||
==Information in URL== | ==Information in URL== | ||
location.href <br> | location.href <br> | ||
Line 29: | Line 36: | ||
==Database== | ==Database== | ||
− | + | commandText <br> | |
select from <br> | select from <br> | ||
update <br> | update <br> | ||
Line 42: | Line 49: | ||
ICommand <br> | ICommand <br> | ||
IRowSet <br> | IRowSet <br> | ||
− | + | ||
==Session== | ==Session== | ||
session.timeout <br> | session.timeout <br> | ||
Line 63: | Line 70: | ||
Server.Transfer <br> | Server.Transfer <br> | ||
Server.Execute <br> | Server.Execute <br> | ||
+ | |||
+ | {{LinkBar | ||
+ | | useprev=PrevLink | prev=Searching for Code in J2EE/Java | lblprev= | ||
+ | | usemain=MainLink | main=OWASP Code Review Guide Table of Contents | lblmain=Table of Contents | ||
+ | | usenext=NextLink | next=JavaScript/Web 2.0 Keywords and Pointers | lblnext= | ||
+ | }} | ||
+ | |||
+ | [[Category:OWASP Code Review Project]] |
Latest revision as of 15:35, 9 September 2010
Inputs
Request
Request.QueryString
Request.Form
Request.ServerVariables
Query_String
hidden
include
.inc
Output
Response.Write
Response.BinaryWrite
<%=
Cookies
.cookies
Error Handling
err.
Server.GetLastError
On Error Resume Next
On Error GoTo 0
Information in URL
location.href
location.replace
method="GET"
Database
commandText
select from
update
insert into
delete from where
exec
execute
.execute
.open
ADODB.
commandtype
ICommand
IRowSet
Session
session.timeout
session.abandon
session.removeall
DOS Prevention
server.ScriptTimeout
IsClientConnected
Logging
WriteEntry
Redirection
Response.AddHeader
Response.AppendHeader
Response.Redirect
Response.Status
Response.StatusCode
Server.Transfer
Server.Execute