php curl 仿冒
程序员文章站
2022-05-19 13:31:49
...
php curl 伪造
http://www.yygh.net/index.php
直接表格提交,一直提示账号不存在。应该后台需要验证。
我想伪造Origin的来源。不知道这么设置origin的来源
$ch = curl_init(); //初始化
$this->url = "http://www.yygh.net/usercenter/userinfo_action.php";
$fields = 'actionpost=login&logintype=0&cardtype=1&userid=34262619702200379&pwd=123qwe&validate=cndm&imagesField.x=32&imageField.y=11';
curl_setopt($ch, CURLOPT_POST, 1);//设置为POST方式
curl_setopt($ch, CURLOPT_POSTFIELDS,$fields);
curl_setopt($ch, 这里);
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $this->url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出
$this->content=curl_exec($ch);
curl_close($ch);
------解决思路----------------------
HTML;
exit;
}else {
$ch = curl_init(); //初始化
$url = "http://www.yygh.net/usercenter/userinfo_action.php";
$fields = array(
'actionpost' => 'login',
'logintype' => 0,
'cardtype' => 1,
'userid' => '330724197712316212',
'pwd' => '123qwe',
'validate' => $_POST['code'],
//cndm&imagesField.x=32&imageField.y=11';
);
curl_setopt($ch, CURLOPT_POST, 1);//设置为POST方式
curl_setopt($ch, CURLOPT_POSTFIELDS, $fields);
curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file); //使用上面获取的cookies
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出
$content = curl_exec($ch);
curl_close($ch);
echo $content;
}
请核实用户信息的正确性
http://www.yygh.net/index.php
直接表格提交,一直提示账号不存在。应该后台需要验证。
我想伪造Origin的来源。不知道这么设置origin的来源
$ch = curl_init(); //初始化
$this->url = "http://www.yygh.net/usercenter/userinfo_action.php";
$fields = 'actionpost=login&logintype=0&cardtype=1&userid=34262619702200379&pwd=123qwe&validate=cndm&imagesField.x=32&imageField.y=11';
curl_setopt($ch, CURLOPT_POST, 1);//设置为POST方式
curl_setopt($ch, CURLOPT_POSTFIELDS,$fields);
curl_setopt($ch, 这里);
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $this->url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出
$this->content=curl_exec($ch);
curl_close($ch);
------解决思路----------------------
$cookie_file = dirname(__FILE__).'/cookie.txt';
if(isset($_GET['verification'])) {
$url = 'http://www.yygh.net/include/validateimg.php?' . rand();
$ch = curl_init(); //初始化
curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file);
curl_setopt($ch, CURLOPT_URL, $url);
curl_exec($ch);
curl_close($ch);
exit;
}
if(! $_POST) {
$url = "http://www.yygh.net/usercenter/userinfo_action.php";
$ch = curl_init(); //初始化
curl_setopt($ch, CURLOPT_COOKIEJAR, $cookie_file); //存储cookies
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出
$content = curl_exec($ch);
curl_close($ch);
echo
HTML;
exit;
}else {
$ch = curl_init(); //初始化
$url = "http://www.yygh.net/usercenter/userinfo_action.php";
$fields = array(
'actionpost' => 'login',
'logintype' => 0,
'cardtype' => 1,
'userid' => '330724197712316212',
'pwd' => '123qwe',
'validate' => $_POST['code'],
//cndm&imagesField.x=32&imageField.y=11';
);
curl_setopt($ch, CURLOPT_POST, 1);//设置为POST方式
curl_setopt($ch, CURLOPT_POSTFIELDS, $fields);
curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file); //使用上面获取的cookies
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出
$content = curl_exec($ch);
curl_close($ch);
echo $content;
}
请核实用户信息的正确性
声明:本文内容由网友自发贡献,版权归原作者所有,本站不承担相应法律责任。如您发现有涉嫌抄袭侵权的内容,请联系admin@php.cn核实处理。
相关文章
相关视频
下一篇: css3 图片 抖动效果