�� php ��

FastCode · 21-11-2002, 06:42 PM

��

�� php ��
��
�� sessions.php
�� ...�� ...

if ( is_array($HTTP_COOKIE_VARS) ) {
// $sessionhash = $HTTP_COOKIE_VARS['sessionhash'];
$bbuserid = $HTTP_COOKIE_VARS['bbuserid'];
$bbpassword = $HTTP_COOKIE_VARS['bbpassword'];
$bbalthash = $HTTP_COOKIE_VARS['bbalthash'];
}

almuslet · 21-11-2002, 07:03 PM

��

almuslet · 21-11-2002, 07:09 PM

�� PHP:

  if ( is_array($HTTP_COOKIE_VARS) )

�� HTTP_COOKIE_VARS �� ...�� .... �� (login) �� ....��

�� PHP:

   {

// $sessionhash = $HTTP_COOKIE_VARS['sessionhash'];

�� sessionhash �� sessionhash.�� ...��

�� PHP:

  $bbuserid = $HTTP_COOKIE_VARS['bbuserid'];

$bbpassword = $HTTP_COOKIE_VARS['bbpassword'];

$bbalthash = $HTTP_COOKIE_VARS['bbalthash'];

��
�� {
.
�� !

. ��
�� ..
�� ...�� php �� register_globals. �� php.ini.
�� almuslet �� almuslet$ ...��

�� PHP:

  $HTTP_COOKIE_VARS["almuslet"]

� �� GET �� post �� sessions.
�� post ��:

�� PHP:

  HTTP_POST_VARS$

�� get:

�� PHP:

  HTTP_GET_VARS$

.....
�� php �� 4,1 ��.
��

�� PHP:

  POST$_

GET_$

SESSION_$

�� ...�� .

FastCode · 21-11-2002, 09:32 PM

�� ...�� ...

�� .

�� (�� ) �� ..�� :

�� PHP:

  http://www.victim.com/forum/index.php?bbuserid=[1]&bbpassword=[PasswordHash]

�� ...�� ....�� .

�� ....�