一个远程下载的php 可能造成系统被黑

<?php
set_time_limit(0);

if(isset($_GET['url']) && isset($_GET['filename'])){
	if(httpcopy($_GET['url'], $_GET['filename'])){
	    echo("Done.");
	}else{
	    echo("Down Error.");
	}
}else{
	die('Input error.');
}

function httpcopy($url, $file="", $timeout=60) {
    $file = empty($file) ? pathinfo($url,PATHINFO_BASENAME) : $file;
    $dir = pathinfo($file,PATHINFO_DIRNAME);
    !is_dir($dir) && @mkdir($dir,0755,true);
    $url = str_replace(" ","%20",$url);

    if(function_exists('curl_init')) {
		echo "curl ";
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, $url);
        curl_setopt($ch, CURLOPT_TIMEOUT, $timeout);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
        $temp = curl_exec($ch);
        if(@file_put_contents($file, $temp) && !curl_error($ch)) {
            return $file;
        } else {
            return false;
        }
    } else {
		echo "copy ";
        $opts = array(
            "http"=>array(
            "method"=>"GET",
            "header"=>"",
            "timeout"=>$timeout)
        );
        $context = stream_context_create($opts);
        if(@copy($url, $file, $context)) {
            //$http_response_header
            return $file;
        } else {
            return false;
        }
    }
}
?>

 

ForDream:当前文章用户名 https://ishoud.com/index.php/2021/12/07/222.html:当前文章地址
THE END
分享
二维码
< <上一篇
下一篇>>
© 版权声明