VULHUB ™

collect.php ——————————- else { /* 检查网址 */ $url=get_referer(); $neturl=empty($_POST['neturl']) ? trim($_GET['neturl']) : trim($_POST['neturl']); $collect_url=empty($neturl) ? $url : $neturl; $contents = ”; if($fid=@fopen($collect_url,”r“))//$collect_url没进行处理 { do { $data = fread($fid, 4096); if (strlen($data) == 0) { break; } $contents .= $data; } while(true); fclose($fid); } else { show_message(’collect_url_error’, ”); exit; } ———————————- Cyask 3.2 处理$collect_url ===== 等待官方补丁 <a href=http://www.cyask.com/ target=_blank rel=external nofollow>http://www.cyask.com/</a>

collect.php ——————————- else { /* 检查网址 */ $url=get_referer(); $neturl=empty($_POST['neturl']) ? trim($_GET['neturl']) : trim($_POST['neturl']); $collect_url=empty($neturl) ? $url : $neturl; $contents = ”; if($fid=@fopen($collect_url,”r“))//$collect_url没进行处理 { do { $data = fread($fid, 4096); if (strlen($data) == 0) { break; } $contents .= $data; } while(true); fclose($fid); } else { show_message(’collect_url_error’, ”); exit; } ———————————- Cyask 3.2 处理$collect_url ===== 等待官方补丁 <a href=http://www.cyask.com/ target=_blank rel=external nofollow>http://www.cyask.com/</a>