ÇóPHPºǫ́POSTÊý¾ÝÔ´Âë
¹¦ÄÜ£º
ºǫ́µÇ½ijDISCUZ7.0 ÂÛ̳Óúǫ́POST½øÐз¢Ìû
ÓлáµÄ¡¢×ö¹ýµÄÅóÓÑÌù´úÂë
Äܽâ¾öÎÊÌâµÄÁíÍ⿪ÌûËÍ200·Ö
PHP code:
<?php
// @author PHP-Fish
// @contact 51PHP.Net
// @describe curlµÇ¼discuzÂÛ̳
$ch = curl_init();
$url = 'http://www.discuz.net/logging.php?action=login&loginsubmit=yes';
$referer = 'http://www.discuz.net/logging.php?action=login'; //αװҳÃæÀ´Ô´
curl_setopt($ch, CURLOPT_URL, $referer); //´ò¿ªµØÖ·,»ñÈ¡Ëæ»úhashÂë
ob_start();
curl_exec($ch);
$content = ob_get_contents();
ob_end_clean();
curl_close($ch);
$ch = curl_init();
$preg_1 = '/<input type="hidden" name="formhash" value="(.*?)" \/>/';
preg_match($preg_1, $content, $arr_match);
$hash = $arr_match['1']; //Òþ²Ø´«µÝµÄhash×Ö·û´®;
$arr_post = array();
$arr_post['formhash'] = $hash;
$arr_post['loginfield'] = 'username';
$arr_post['username'] = '******'; //ÄúµÄÂÛ̳Óû§Ãû;
$arr_post['password'] = '******'; //ÂÛ̳ÃÜÂë
$arr_post['questionid'] = 0;
$arr_post['answer'] = '';
//$arr_post['cookietime'] = 2592000;
$arr_post['loginsubmit'] = true;
curl_setopt($ch, CURLOPT_URL, $url); //Éè
Ïà¹ØÎÊ´ð£º
ʹÓÃPHPµÄexecº¯Êýµ÷ÓÃlinuxµÄshellÃüÁÈçdateÈ¥ÐÞ¸Äʱ¼ä»òshutdownȥʵÏֹػú/ÖØÆô£¬µ«ÊÇ·µ»ØÖµ¶¼ÊÇʧ°ÜµÄ¡£¾¹ý¶à´ÎÊÔÑ飬È϶¨ÊÇûÓÐȨÏÞµÄÎÊÌâ¡£
ËùÒÔ£¬Ð¡µÜÔÚ´ËÇë½Ì¸÷룬ÈçºÎ²ÅÄÜÉèÖÃȨÏÞ£¬µ÷ÓÃlinux shellà ......
ÎÒÔÚphpÒ»¸ö½çÃæË¢ÐÂÒÔºóÏëÔÚ1·ÖÖÓÒÔºó½øÐвÙ×÷£¨±ÈÈç˵µ¯³ö¸öÌáʾ¿ò£©
¸ßÊÖÖ¸µãÈçºÎ²Ù×÷
ÊÇÓÃsessionµÄÉú´æʱ¼äÉèÖÃÂ𣿻¹ÊDZðµÄʲô·½·¨
Çë˵Ïêϸµã¡£¹òÇó¡£
ʲôÒâ˼£¿Ò»·ÖÖӺ󵯳öÌáʾÌáʾ¿ò£¿ÄÇÓÃjavascrip ......
ÀýÈçÒ»¾äÎı¾ AAA'BBB\CCC
ÓÃÁË mysql_real_escape_string ºó ¿ÉÒÔ´æ½øÊý¾Ý¿â
µ«¶Á³öÀ´µÄʱºò£¬¾Í³ÉÁË
AAA\'BBB\\\CCC
ÈçºÎ»¹ÔΪ AAA'BBB\CCC
addslashes
stripslashes
[b][/b]ÒýÓÃ
adds ......
¸÷λ´óЩ
ÇóÒ»¶Îphp´úÂë
¿ÉÒÔʵÏÖÒÔϹ¦ÄÜ
Õë¶Ô²»Í¬µÄä¯ÀÀÆ÷ÏÔʾ²»Í¬µÄͼƬ
¾ÍÊÇÓÐÒ»ÕÅͼƬ£¬Ö»Ïë¸øie6Óû§¿´µ½
Èç¹ûie7¡¢chrome¡¢firefoxÓû§ä¯ÀÀÔòÏÔʾÁíÍâÒ»ÕÅͼƬ
¼Û¸ñ²»ÒªÌ«ÀëÆ×¾ÍÐÐ ......
µ±ÎÒÓÃPHPÏÂÔØ·þÎñÆ÷ÉϵÄwavÒôÀÖÎļþʱ£¬wavÎļþÄܹ»ÏÂÔØÏÂÀ´£¬²¢ÇÒ´óСÏàͬ£¬µ«ÊÇÈ´²»Äܲ¥·Å¡£µ«ÈôÊÇͨ¹ýÎļþ·þÎñÆ÷¿½±´µ½±¾µØ£¬ÊÇ¿ÉÒÔ²¥·Å¸ÃÎļþµÄ£¬²»ÖªµÀÈçºÎÔÒò¡£Í¨¹ýMD5sum¼ì²â£¬¸ÃÎļþÏÂÔغóÒѸı䣬²»ÖªµÀÔ ......
