当前位置:Gxlcms > PHP教程 > phpcurl仿冒

phpcurl仿冒

时间:2021-07-01 10:21:17 帮助过:7人阅读

php curl 伪造
http://www.yygh.net/index.php

直接表格提交,一直提示账号不存在。应该后台需要验证。


我想伪造Origin的来源。不知道这么设置origin的来源

$ch = curl_init(); //初始化
$this->url = "http://www.yygh.net/usercenter/userinfo_action.php";
$fields = 'actionpost=login&logintype=0&cardtype=1&userid=34262619702200379&pwd=123qwe&validate=cndm&imagesField.x=32&imageField.y=11';
curl_setopt($ch, CURLOPT_POST, 1);//设置为POST方式
curl_setopt($ch, CURLOPT_POSTFIELDS,$fields);

curl_setopt($ch, 这里);

curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $this->url);


curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出

$this->content=curl_exec($ch);
curl_close($ch);
------解决思路----------------------
$cookie_file = dirname(__FILE__).'/cookie.txt';

if(isset($_GET['verification'])) {
$url = 'http://www.yygh.net/include/validateimg.php?' . rand();
$ch = curl_init(); //初始化
curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file);
curl_setopt($ch, CURLOPT_URL, $url);
curl_exec($ch);
curl_close($ch);
exit;
}
if(! $_POST) {
$url = "http://www.yygh.net/usercenter/userinfo_action.php";
$ch = curl_init(); //初始化
curl_setopt($ch, CURLOPT_COOKIEJAR, $cookie_file); //存储cookies
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接
输出
$content = curl_exec($ch);
curl_close($ch);
echo <<< HTML

HTML;
exit;
}else {
$ch = curl_init(); //初始化
$url = "http://www.yygh.net/usercenter/userinfo_action.php";
$fields = array(
'actionpost' => 'login',
'logintype' => 0,
'cardtype' => 1,
'userid' => '330724197712316212',
'pwd' => '123qwe',
'validate' => $_POST['code'],
//cndm&imagesField.x=32&imageField.y=11';
);
curl_setopt($ch, CURLOPT_POST, 1);//设置为POST方式
curl_setopt($ch, CURLOPT_POSTFIELDS, $fields);
curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file); //使用上面获取的cookies
curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0); //强制协议为1.0
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect: ')); //头部要送出'Expect: '
curl_setopt($ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 ); //强制使用IPV4协议解析域名
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); //返回字符串,而非直接输出
$content = curl_exec($ch);
curl_close($ch);
echo $content;
}

请核实用户信息的正确性

人气教程排行