我如何...在URL中解决问题 [英] How do I...RESOLVE ISSUE in URL

问题描述

Hello All，



我遇到问题，即我的应用程序在我的页面扩展后接受URL中的任何值。例如，我有一个登录页面，它在URL中看起来像localhost：64890 / login.aspx，如果我在login.aspx之后输入一些文本，如localhost：64890 / login.aspx / test，它接受它，它是没有给我任何404错误。其他一些输入的值如下：



1.localhost：64890 / Login.aspx / Js / Images / Js / Images / admin.php

2.localhost：64890 / Login.aspx / admin.php

3.localhost：64890 / Login.aspx / Images



请帮我解决这个问题，当它是.Aspx页面或.Html页面时，它在我项目的所有页面都开心。



谢谢



我的尝试：



不知道，我认为处理请求时出现问题

Hello All,

I am facing a problem i.e. my application is accepting any value in URL after my page extension. For Example i have a login page and its looks in URL like "localhost:64890/login.aspx" and if i enter some text after login.aspx like "localhost:64890/login.aspx/test" its accepted it and it is not giving me any 404 error. Some other entered values are as follow:

1. "localhost:64890/Login.aspx/Js/Images/Js/Images/admin.php"
2. "localhost:64890/Login.aspx/admin.php"
3. "localhost:64890/Login.aspx/Images"

Please help me to resolve this it is happpening in all pages in my project while it is ".Aspx" page or ".Html" page.

Thanks

What I have tried:

No idea ,i think something is wrong in handing request

推荐答案

那是因为这就是系统的工作原理：遵循URL从左到右工作的路径以及何时工作找到它加载它的可执行页面名称。

因此，如果您的URL是localhost：64890 / login.aspx / test并且存在名为login.aspx的页面，那么它将加载页面并忽略/ test位：尝试使用生产网站，你会发现同样的事情。



这是一个坏的Thi ng：这是网络钓鱼者或垃圾邮件发送者可以隐藏你最终会遇到的方式之一，但这是我们不得不忍受的。

That's because that's how the system works: is follows the path in the URL working left-to-right and when it finds an executable page name it loads it.
So if your URL is "localhost:64890/login.aspx/test" and a page called "login.aspx" exists, then it will load the page and ignore the "/test" bit: try it with a "production" website and you will find the same thing.

This is a Bad Thing: it's one of the ways a phisher or spammer can "hide" where you will end up, but it's something we have to live with.

这篇关于我如何...在URL中解决问题的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！