Discuz! System Error---您當前的訪問請求當中含有非法字符，已經被系統拒絕 - 52AV手機A片王|52AV.ONE

private function _xss_check() {9 U0 N6 M6 Z p% i( g
f Q# L& U5 }% A( w6 O
static $check = array('"', '>', '<', '\'', '(', ')', 'CONTENT-TRANSFER-ENCODING');
9 C) n! A& s: A0 e- T7 `! A
+ B# u5 t" [* }2 D7 r+ W
if(isset($_GET['formhash']) && $_GET['formhash'] !== formhash()) {
& S* A: i {5 E" M7 Z
system_error('request_tainting');, {0 C3 z9 o3 {4 a/ ?
}$ G' [9 U0 e1 w' M9 H
; G+ u p6 c( Z
if($_SERVER['REQUEST_METHOD'] == 'GET' ) {& l; P& x% @! B5 G+ w
$temp = $_SERVER['REQUEST_URI'];9 x- W3 l# @% K
} elseif(empty ($_GET['formhash'])) {( j7 c/ P4 e: D7 U7 y6 ?4 k
$temp = $_SERVER['REQUEST_URI'].file_get_contents('php://input');
5 |& T( w f4 j# t1 z4 n) {
} else {
) ^) `& r: V2 K/ Y% t. I2 b
$temp = '';7 M3 }7 X% r7 o z; ^! F: a' V3 j
}
1 R0 j5 D5 e: I: J6 K; e- G
5 b* E( N* v, q) M" w
if(!empty($temp)) {9 s0 ? b; [' t& f3 j- i
$temp = strtoupper(urldecode(urldecode($temp)));: `8 H" `# [9 u5 b
foreach ($check as $str) {6 Q$ @7 z# p0 ^4 y4 p' j
if(strpos($temp, $str) !== false) {
8 G" E v! ~# r1 D1 ]* o
system_error('request_tainting');5 x+ d; K' E& F/ ]. v
}0 q; i9 Q: r/ ]. t5 u W; Q
}$ r7 p/ k$ ^: ?+ `1 m9 g$ `. A
}' W9 B: P3 N5 N+ Q( F) Y a
' A/ S& Q+ `) d) B9 H' v- B
return true;

複製代碼