1. 首頁
  2. 問答
  3. 如何比較上傳文件中的字符串

如何比較上傳文件中的字符串

2014-04-24 13 views
0

此代碼應該嘗試比較上傳文件中的字符串。如果我上傳文件並匹配字符串是否存在並顯示一些信息,但運行後無法顯示什麼如何比較上傳文件中的字符串

的servlet:

import java.io.BufferedReader; 
import java.io.File; 
import java.io.FileNotFoundException; 
import java.io.FileReader; 
import java.io.IOException; 
import java.io.PrintWriter; 
import java.util.logging.Logger; 

import javax.servlet.http.HttpServlet; 
import javax.servlet.http.HttpServletRequest; 
import javax.servlet.http.HttpServletResponse; 

public class WebPageSourceServlet extends HttpServlet { 

    private static final long serialVersionUID = 1L; 

    private static final Logger log = Logger 
      .getLogger(WebPageSourceServlet.class.getName()); 

    @SuppressWarnings("resource") 
    public void doPost(HttpServletRequest req, HttpServletResponse resp) 
      throws IOException { 

     String phish = req.getParameter("phish"); 
     PrintWriter out = resp.getWriter(); 
     resp.setContentType("text/html"); 
     try { 

      String imageurl = "<img src=https://"; 
      String amb = "@"; 
      String action = "<form action=http://"; 
      String frame = "<iframe"; 
      String script = "<script"; 
      String popup = "popUp"; 
      String popup1 = "window.open"; 
      String actions = "<form action=https://"; 

      File f = new File(req.getParameter("phish")); 
      FileReader fr = new FileReader(f); 
      BufferedReader br = new BufferedReader(fr); 
      phish = br.readLine(); 

      while (phish != null) { 
       // phish=br.readLine(); 
       if (phish.equalsIgnoreCase(popup) || phish.equals(amb) 
         || phish.equalsIgnoreCase(popup1) 
         || phish.equalsIgnoreCase(frame)) { 
        out.println("<p>WARNING:This May Cause a Phishing Attacks!!!</p>"); 
       } else { 
        out.println("<p>INFO:This is Secure Website!!!</p>"); 
       } 
       if (phish.equalsIgnoreCase(script)) { 
        out.println("<p>WARNING:This may Cause a Doubtful and Phishing attacks</p>"); 
       } else { 
        out.println("<p>This is Phishing</p>"); 

       } 
       if (phish.equalsIgnoreCase(actions)) { 
        out.println("<p>INFO:This is a Secure Website</p>"); 
       } else { 
        out.println("WARNING:<p>This may cause a Possible to Phishing attacks:</p>"); 
        br.close(); 
        return; 
       } 
      } 
     } catch (FileNotFoundException f) 

     { 
      System.out.println(f); 
      log.info("file not found"); 
     } catch (Exception e) { 
      System.out.println(e); 
      e.printStackTrace(); 
      log.info("exception occured"); 
     } 

    } 
}

JSP文件:

<form action="/UploadServlet" method="post" 
       enctype="multipart/form-data"> 
    <input type="file" name="phish" size="50" /><br /> 
    <input type="submit" value="Upload File" /> 
</form>

IAM使用的JSP文件名是網絡釣魚使用REQ用於獲得parameter.so,怎麼會這樣處理到上傳的文件。

來源

2014-04-24 user3430611

回答

0

變化

phish = br.readLine(); 
while (phish != null) { 


while ((phish=br.readLine()) != null) {

既然這樣你是不是讀循環中的下一行,所以它基本上是一個無限循環。

此外,您需要查看Apache Commons File Upload庫的文檔。因爲File f = new File(req.getParameter("phish"));不起作用。你實際上並沒有讀文件。當你做文件上傳時(即enctype="multipart/form-data"),那麼request.getParameter總是返回null

來源

2014-04-24 18:32:46 developerwjk

相關問題

 相關問題