PHP网站,修复网站XSS跨站漏洞,目前扫描发现一个漏洞,需要修复 360网站安全检测扫描图已附! 该页代码如下: <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url=http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">[/url] <html xmlns="[url=http://www.w3.org/1999/xhtml">]http://www.w3.org/1999/xhtml">[/url] <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>期刊 2014年第1期</title> <style type="text/css"> /* CSS Document */ h1,h2,h3,h4,h5,h6,p,ul,li{margin:0px;padding:0px} body{ background:#252525;margin:0px;padding:0px} #xiangxitop{ background:url(xiangxi_top.gif) no-repeat;width:950px;height:73px;margin:0 auto} #xiangxitop .dianji{ width:150px;height:36px;line-height:36px;margin-left:38px;float:left;_display:inline} .dianji a{ font-size:14px;color:#FFF;text-decoration:none;font-weight:bold} .dianji a:hover,.dianji a:visited{font-size:14px;color:#FFF;text-decoration:none} .page_t{ width:160px;float:left;height:36px;line-height:36px} .page_t a{ font-size:14px;color:#FFF;text-decoration:none;font-weight:bold} .page_t a:hover,.page_t a:visited{font-size:14px;color:#FFF;text-decoration:none} .top_r{ float:left;height:36px;line-height:36px} .top_r{ font-size:14px;color:#FFF;text-decoration:none;font-weight:bold} .title_p{float:left;width:950px;text-align:center;margin:0 auto;font-size:14px;font-weight:bold;line-height:34px;color:#FFF} .mucontent{ width:250px;height:auto;position:absolute;top:90px;left: -1px;float:left} .cl{ clear:both} #box_tu{ width:100%;margin:0 auto;text-align:center;margin-top:20px;position:relative;float:left} .mulu{width:204px;height:auto;float:left} .mulu_tt{ background:url(wid_t.gif) no-repeat;width:204px;height:13px;overflow:hidden;float:left} .mulu_center{ background:url(wid_dd.gif) repeat-y;width:204px;height:auto;overflow:hidden;float:left} .mulu_yy{ background:url(wid_yy.gif) no-repeat;width:204px;height:13px;overflow:hidden;float:left} .list_xu{ width:190px;height:auto; margin-left:12px; display:inline;float:left; text-align:left} .list_xu ul li{ font-size:14px;list-style:none;color:#996600;line-height:22px; height:22px;width:190px;text-align:left} .list_xu ul li a{color:#996600;text-decoration:none;list-style:none} .list_xu ul li a:hover{ color:#ff0000; text-decoration:none; list-style:none; } /*.mulu ul{ border:1px solid red;margin:20px 0 0 18px;float:left}*/ .xhx{border-bottom:1px solid #c3aa96; width:170px; height:2px; overflow:hidden; margin-left:10px; display:inline; float:left} .bott_conteter{ width:900px;height:auto;margin:8px auto 80px auto} .content_top{ height:32px;width:900px;background:#e3e2e2} .bott_center{ width:900px;background:#FFF} .list_r{ width:438px;height:auto;border-right:1px dashed #ccc;float:left;margin:15px 0 33px 5px} .list_r ul li{ color:#003399;list-style:none;line-height:24px} .list_r ul li a{color:#003399;text-decoration:underline;font-size:14px} .list_r ul li a:hover,.list_r ul li a:visited{color:#003399;font-size:14px;text-decoration:underline} .lsit_f{ float:left;margin:15px 0 33px 32px} .lsit_f ul li{ list-style:none;color:#003399;line-height:24px} .lsit_f ul li a{color:#003399;text-decoration:underline;font-size:14px} .lsit_f ul li a:hover,.lsit_f ul li a:visited{color:#003399;font-size:14px;text-decoration:underline;font-size:14px} .put_conte{ color:#996600;font-size:14px;font-weight:bold;line-height:32px;margin-left:12px} .feilei_p{ margin-left:12px; margin-top:5px; display:inline;width:190px; height:50px; float:left} .feilei_p ul li{ font-size:14px;list-style:none;line-height:18px;text-align:left;float:left; width:180px; height:18px;} .feilei_p ul li a{ color:#003399;text-decoration:underline} .feilei_p ul li a:hover,.feilei_p ul li a:visited{color:#003399;text-decoration:underline} .close_t{float:left;background:url(mulu2.gif) no-repeat;width:21px;height:156px;font-size:12px;padding:6px 2px 0 3px;_display:inline} .close_t a{ color:#663300;text-decoration:none;line-height:20px} .close_t a:hover,.close_t a:visited{color:#663300;text-decoration:none} .tt{ margin-top:5px} .tt li{list-style:none} .cont{ padding:10px 0 20px 0} .tt li{color:#003399;font-size:14px} .tt li a{color:#003399;font-size:14px} .tt li a:hover,.tt li a:visited{color:#003399} .leftxx{ width:450px;height:24px;line-height:24px;border-right:1px dashed #ccc;float:left;overflow:hidden;margin-left:5px;_display:inline} .leftrr{ width:400px;height:24px;line-height:24px;float:left;padding-left:15px;overflow:hidden;} .dibu{ width:100%;height:auto;margin-top:1px;float:left} </style> <script type="text/javascript"> function navFloat() { if (document.getElementById("fl_subnav").style.display == 'none'){ document.getElementById("fl_subnav").style.display = ''; document.getElementById("fl_but").innerHTML = '<a href="javascript:void(0)" onclick="navFloat();">点击隐藏导航</a>'; return null; } if(document.getElementById("fl_subnav").style.display == '') { document.getElementById("fl_subnav").style.display = 'none'; document.getElementById("fl_but").innerHTML = '<a href="javascript:void(0)" onclick="navFloat();">点击打开导航</a>'; return null; } } </script> </head> <body> <?php $mz_num = $_GET['mz']; $jpg_name = $_GET['id']; $nextid = $_GET['id'] +1; $preid = $_GET['id'] -1; if ($preid < 0) $preid = 0; if ($nextid > 123) $nextid = 123; ?> <div id="xiangxitop"> <div class="dianji"><a href="index.html" target="_blank">更多期刊</a></div> <div class="page_t"> <a title="返回下一版" target="_self" href="show_1.php?id=<?php echo $nextid;?>&mz=<?php echo $mz_num;?>">下一版</a> <a title="返回上一版" target="_self" href="show_1.php?id=<?php echo $preid;?>&mz=<?php echo $mz_num;?>">上一版</a> </div> <span class="top_r">(操作提示:点击鼠标左键放大图片,右键缩小图片。)</span> <div class="title_p">期刊 2014年第1期</div> </div> <div class="cl"></div> <div id="box_tu"><img src="<?php echo $mz_num;?>/<?php echo $jpg_name;?>.jpg" width="950" border="0" onmouseup=this.width+=(3-event.button*2)*30 oncontextmenu=return(false) /></div> <div class="mucontent"> <div class="mulu" id="fl_subnav" style="display:;"> <div class="mulu_tt"></div> <div class="mulu_center"> <div class="list_xu"> <ul> <li><a href="show_1.php?id=0&mz=1" target="_self" title="返回封面">(封面 2014年第1期)</a></li> <li><a href="show_1.php?id=1&mz=1" target="_self" title="返回卷首语">(卷首语)</a></li> <li><a href="show_1.php?id=2&mz=1" target="_self">(目录 1)</a></li> <li><a href="show_1.php?id=4&mz=1" target="_self">(彩页 1)</a></li> <li><a href="show_1.php?id=20&mz=1" target="_self">(内页 1)</a></li> <li><a href="show_1.php?id=123&mz=1" target="_self" title="返回封底">(封底 2014年第1期)</a></li> </ul> </div> <div class="xhx"></div> <div class="feilei_p"> <ul> <li><a href="index.html" target="_blank" title="更多期刊">更多期刊</a> <a href="#" target="_self" title="返回顶部">返回顶部</a></li> </ul> </div> </div> <div class="mulu_yy"></div> </div> <div class="close_t" id="fl_but" ><a href="javascript:void(0)" onclick="navFloat();">点击隐藏导航</a></div> </div> </body> </html>
2019-09-21 09:09:45