Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <%
- Set baglanti = Server.CreateObject("ADODB.Connection")
- baglanti.Open "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=" & Server.MapPath ("db/Data.mdb")
- %> <%
- function guvenlik(data)
- data = Replace (data ,"`","",1,-1,1)
- data = Replace (data ,"=","",1,-1,1)
- data = Replace (data ,"&","",1,-1,1)
- data = Replace (data ,"%","",1,-1,1)
- data = Replace (data ,"!","",1,-1,1)
- data = Replace (data ,"#","",1,-1,1)
- data = Replace (data ,"<","",1,-1,1)
- data = Replace (data ,">","",1,-1,1)
- data = Replace (data ,"*","",1,-1,1)
- data = Replace (data ,"And","",1,-1,1)
- data = Replace (data ,"'","",1,-1,1)
- data = Replace (data ,"Chr(34)","",1,-1,1)
- data = Replace (data ,"Chr(39)","",1,-1,1)
- data = Replace (data ,"select","",1,-1,1)
- data = Replace (data ,"join","",1,-1,1)
- data = Replace (data ,"union","",1,-1,1)
- data = Replace (data ,"where","",1,-1,1)
- data = Replace (data ,"insert","",1,-1,1)
- data = Replace (data ,"delete","",1,-1,1)
- data = Replace (data ,"update","",1,-1,1)
- data = Replace (data ,"like","",1,-1,1)
- data = Replace (data ,"drop","",1,-1,1)
- data = Replace (data ,"create","",1,-1,1)
- data = Replace (data ,"modify","",1,-1,1)
- data = Replace (data ,"rename","",1,-1,1)
- data = Replace (data ,"alter","",1,-1,1)
- data = Replace (data ,"cast","",1,-1,1)
- guvenlik=data
- end function
- %> <%
- If trim(guvenlik(request.form("kullanici_adi")))="" then
- Response.Write "<font face=Comic Sans MS><font size=2><center><br><br><br><br><br><br><br><b>UYARI:</b><br><br>Kullanıcı adınızı yazınız!<br><br><a href='javascript:history.back(1)'><FONT color=#e45f0e><u>Geri Dön</u></a></b></center>"
- response.end
- end if
- If trim(guvenlik(request.form("sifre")))="" then
- Response.Write "<font face=Comic Sans MS><font size=2><center><br><br><br><br><br><br><br><b>UYARI:</b><br><br>Şifrenizi yazınız!<br><br><a href='javascript:history.back(1)'><FONT color=#e45f0e><u>Geri Dön</u></a></b></center>"
- response.end
- end if
- %> <%
- Set rs = Server.CreateObject("Adodb.Recordset")
- Sorgu = "select * from uyeler where kullanici_adi = '" & guvenlik(request.form("kullanici_adi")) & "' and sifre = '" & guvenlik(Request.form ("sifre")) & "'"
- rs.Open Sorgu, Baglanti, 1, 3
- If rs.BOF And RS.EOF Then
- Response.Write "<font face=Comic Sans MS><font size=2><center><br><br><br><br><br><br><br><b>UYARI:</b><br><br>Kullanıcı Adınız & Şifreniz Yanlıştır!<br><br><a href='javascript:history.back(1)'><font face=Comic Sans MS><font size=2><FONT color=#e45f0e><u>Geri Dön</u></a></b></center>"
- Else
- Session("durum") = "giris_yapmis"
- Session("id") = rs("id")
- Session("kullanici_adi") = rs("kullanici_adi")
- if rs("tip") = "" then
- session("tip") = 0
- else
- session("tip") = rs("tip")
- end if
- session("adi") = rs("adi")
- Response.Cookies("TekTech")("kullanici_adi") = Request.Form("kullanici_adi")
- Response.Cookies("TekTech")("sifre") = Request.Form("sifre")
- Response.Cookies("TekTech").Expires = Now()+15
- Response.Redirect "default.asp"
- End If
- %>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement