日期:2012-04-08  浏览次数:21206 次

<%
a=Request.TotalBytes
if a>0 Then
Set c=Createobject("adodb.stream")
c.Type=1
c.Open
c.Write Request.BinaryRead(a)
c.Position=0

d=c.Read
e=chrB(13)&chrB(10)
f=Instrb(d,e)
g=Instrb(f+1,d,e)

set h=Createobject("adodb.stream")
h.Type=1
h.Open
c.Position=f+1
c.Copyto h,g-f-3
h.Position=0
h.type=2
h.CharSet="BIG5"
i=h.Readtext
h.close

j=mid(i,InstrRev(i,"\")+1,g)

if instr("jsp/asp/aspx/exe/php/html/htm/...",right(j,len(j)-instr(j,".")))>0 then
session("error")="您要上传不允许的文件"
response.redirect("error.asp")
end if

j=replace(date,"-","")&right(j,len(j)-instr(j,".")+1)

set fso=server.createobject("scripting.filesystemobject")
if fso.FileExists(server.mappath(j)) then
i=1
msg=true
do while msg
m=left(j,instr(j,".")-1)&"("&i&")"&right(j,len(j)-instr(j,".")+1)
if not fso.FileExists(server.mappath(m)) then
j=m
msg=false
end if
i=i+1
loop
end if
set fso=nothing


k=Instrb(d,e&e)+4
l=Instrb(k+1,d,leftB(d,f-1))-k-2
h.Type=1
h.Open
c.Position=k-1
c.CopyTo h,l
h.SaveToFile server.mappath(j),2
end if
%>
<form enctype=multipart/form-data method=post>
<input type=file name=n />
<input name="submit" type=submit value="提交" />
</form>