- 0
- 0
- 约5.93千字
- 约 9页
- 2017-08-23 发布于河南
- 举报
突破ip封锁登陆论坛系统(Breach of IP blockade landing forum system)
突破ip封锁登陆论坛系统(Breach of IP blockade landing forum system)
[original] IP landing forum system breakthrough blockade
Article title: [original] break IP blockade login to the forum at the top of the system: 2005-06-1422:06 Yezhan released in love [original] break IP blockade forum landing system
Author: Yezhan (531200.)
Source: EvilOctal security team
A paper document of the Ministry of education, the major domestic universities BBS night is set to only allow the school to post. Our school is the use of BBSXP (Forum Forum system), originally due to server bandwidth, popularity is very low. My brother has administrator the IP outside the school, not landing post. A lot of people are surfing the web on campus broadband, some graduates, our computer version of the lovely echo, are not to enter... (a lot of nonsense).
OK lets start.
The forum is in the setup.asp page filtering ip,
Copycode
IfRequest.Cookies (username) emptythen
Sql= select*from[user]whereusername= HTMLEncode (Request.Cookies (username) #39);
SetRs=Conn.Execute (SQL)
Ifrs.eofthenResponse.Cookies (username) =
IfRequest.Cookies (userpass) rs (userpass) thenResponse.Cookies (username) =
Membercode=rs (membercode)
Userface= rs (userface)
Newmessage=rs (newmessage)
Userlife=rs (userlife)
Setrs=nothing
Endif
IfRequest.ServerVariables (HTTP_X_FORWARDED_FOR) =emptythen
Remoteaddr=Request.ServerVariables (REMOTE_ADDR)
Else
Remoteaddr=Request.ServerVariables (HTTP_X_FORWARDED_FOR)
Endif
Ifbadipemptythen
Filtrate=split (badip, |)
Fori=0toubound (filtrate)
Ifinstr (remoteaddrquot |; , | filtrate (I) 0thenresponse.redirect inc/badip.htm )
Next
Endif
IfRequest.Cookies (skins) =emptythenResponse.Cookies (skins) =style
This code is the setup.asp user verification piece, read it. If the cookies is not empty, then read the database to verify the user password is correct, then the correct definition of variables, some need to use variables with all the database read out data assignment. Then read ip. if IP belongs to be sea
您可能关注的文档
- 所有者权益练习(Owner equity exercise).doc
- 手动修复注册表(Manual repair registry).doc
- 手机sd卡中的文件夹(Folder in mobile SD card).doc
- 手机互联网(Mobile Internet).doc
- 手机使用误区全揭秘 弱电辐射大千倍(Mobile phone use error of full secret electroweak thousand times).doc
- 手机内核_基带_rom_通俗解释(Mobile phone baseband _rom_ kernel _ popular explanation).doc
- 手机分辨水行(Mobile phone to distinguish water line).doc
- 手机基带(Mobile baseband).doc
- 手机战国(Mobile Warring States).doc
- 手机客户端测试项(Mobile client test item).doc
- 金裕富证券-诺比侃-02635.HK-AI基建运维领域标杆企业,从轨交单点突破到多场景全域布局.pdf
- 华福证券-医药生物-蛋白降解-TPD-26年看自免管线临床突破.pdf
- 华福证券-春节假期综述-海外波动难撼债市修复趋势.pdf
- 中信建投-医药生物-医药行业周度复盘.pdf
- 广发证券-SpaceX﹒多行星文明-“运、连、算、光”四位一体太空基建.pdf
- 中信期货-中国商品期货跨境套利周报.pdf
- 国联民生证券-渤海租赁-000415-动态报告-纯粹的飞机租赁龙头企业.pdf
- 西部证券-因子手工作坊系列(4)-当大单不再可靠-基于撤单行为的机构交易识别.pdf
- 国金证券-大模型赋能投研之十八-OpenClaw搭建个人投研助理-二-Skills搭建与投研工作案例.pdf
- 中信建投-食品饮料-白酒行业春节白酒动销全景-茅五亮眼结构分化.pdf
原创力文档

文档评论(0)