$userid = $_COOKIE['userid']; $userpwd = $_COOKIE['userpwd']; $sql = "SELECT * FROM `user` WHERE `id` = $userid AND `pwd` = '$userpwd'";理论上有注入风险 呵呵 不要相信任何外部变量 $_GET $_POST $_COOKIE$_COOKIE['userpwd'] = "1' OR 1=1";SELECT * FROM `user` WHERE `id`=root AND `pwd`='1' OR 1=1根据setcookie(userpwd,$user[pwd],time()+3600); 返回真实的root密码 呵呵
$userpwd = $_COOKIE['userpwd'];
$sql = "SELECT * FROM `user` WHERE `id` = $userid AND `pwd` = '$userpwd'";理论上有注入风险 呵呵 不要相信任何外部变量 $_GET $_POST $_COOKIE$_COOKIE['userpwd'] = "1' OR 1=1";SELECT * FROM `user` WHERE `id`=root AND `pwd`='1' OR 1=1根据setcookie(userpwd,$user[pwd],time()+3600);
返回真实的root密码 呵呵